Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T180B14271C05A293BB907C1D8B1B0EB0A72D7534EDB82096582FD027A37CFD51F91A9D6 |
|
CONTENT
ssdeep
|
96:FuwEM6S8LUfANuZsdFYTYcBZbEYTPdp2sclVSTfni1EdvB:H6SJouZs3kBNTPdp2sclEDnx |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d99905cb3c27c336 |
|
VISUAL
aHash
|
ffffffffdc280000 |
|
VISUAL
dHash
|
f2b2ca2b21d15166 |
|
VISUAL
wHash
|
7fffffdb98000000 |
|
VISUAL
colorHash
|
0e0000001c0 |
|
VISUAL
cropResistant
|
f2b39ac8ab2b35d9,8c6cacdcd86a7e5c,f87e7f7ffffebdaa,2b2835d950516364,210830b2b2320c11,11043232b2300c21 |
• Amenaza: Phishing
• Objetivo: Desconocido
• Método: Redirección con Captcha malicioso
• Exfil: Desconocido
• Indicadores: JS ofuscado, Captcha sospechoso, diseño genérico.
• Riesgo: ALTO
The user interacts with the Captcha, which could redirect them to a phishing website designed to steal credentials or install malware. The obfuscation is likely to conceal malicious javascript.
The site may harvest credentials or deliver a payload based on the users actions.