Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T13E9110F5E2525633467BC3C2AE650B7932E5720CE986015012FCC39D9F9EC49FC5349A |
|
CONTENT
ssdeep
|
96:nypOPB2ImpItivVervVerXrUUG7apgPi8qnlMcfpNJ:ypOP7metivVeDVeTrUUTmjKCcf1 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8d8b7324668f9999 |
|
VISUAL
aHash
|
bd003c3c18180000 |
|
VISUAL
dHash
|
6b54706830321610 |
|
VISUAL
wHash
|
ff3c3c3c18199998 |
|
VISUAL
colorHash
|
38000200030 |
|
VISUAL
cropResistant
|
6b54706830321610 |
Fake Aevo page designed to appear in search results and trick users into visiting. May redirect to credential harvesting pages, malware downloads, or serve as a trust-building step before requesting sensitive information.
Malicious code is obfuscated using 3370 techniques to evade detection by security scanners and make reverse engineering more difficult.