Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T159F24BF05254D59DD083C7E4DE315E6A72AAE0FBDB878798C3E4AB98E5868CDCC448C4 |
|
CONTENT
ssdeep
|
384:sBWlXJ+vbAiIIkJWVv8x56rzyIWYYP9hbDAd1LQijXf5OaP9PkiTkKWu2dFgiavj:ObAiRAWlYPXW1dbVko2dFgiavj |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
98cd663c33e7a630 |
|
VISUAL
aHash
|
0018181818181800 |
|
VISUAL
dHash
|
26b2b2b2b2b2b28d |
|
VISUAL
wHash
|
18387e5e181e5c45 |
|
VISUAL
colorHash
|
07000007000 |
|
VISUAL
cropResistant
|
8ef2b0badce08686,26b2b2b2b2b2b28d |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.
Pages with identical visual appearance (based on perceptual hash)