Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T152E1A61BF35C33250E5201B55D8923FB876B446CA3364AE66DD8C05C7752BB09AB63C7 |
|
CONTENT
ssdeep
|
192:58iPxwqNdNrtNBNYKpRfGg/tNOfkr2ACq:58sxwqNdNrtNBNYefGxXACq |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
e96992962d690f69 |
|
VISUAL
aHash
|
fffb9999393bff7f |
|
VISUAL
dHash
|
cd8333335352addb |
|
VISUAL
wHash
|
7ff10119013b7f07 |
|
VISUAL
colorHash
|
07000000c00 |
|
VISUAL
cropResistant
|
cd8333335352addb,630783d975370f4c |
• Amenaza: Phishing
• Objetivo: Usuarios de Trezor
• Método: Suplantación de identidad a través de un sitio web similar.
• Exfil: No se detectó exfiltración directa en la captura de pantalla.
• Indicadores: Alojamiento gratuito, logotipo de la marca presente, contenido similar al sitio oficial
• Riesgo: ALTO
The attacker likely aims to trick users into entering their Trezor wallet information or seed phrases to steal their cryptocurrency.
Pages with identical visual appearance (based on perceptual hash)