Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T117630C9A2855701A476340D394BB2B8AB3391C2FF92815E1A4B4C7F572B88F5316BF4F |
|
CONTENT
ssdeep
|
768:RyWuyPPZ/uW5M60Q/8u1nUCl51vUfLQNw/u1sD9XMLLfMRWxX8UUk4zy2QNT0uDr:2GMyOloQzZs8oWQbp |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
be3ac2c2c3ce1e31 |
|
VISUAL
aHash
|
fc8f879f8f9fffff |
|
VISUAL
dHash
|
413d2c201435e2c2 |
|
VISUAL
wHash
|
3d0587878785717e |
• Amenaza: Phishing de billetera de criptomonedas
• Objetivo: Usuarios de billetera hardware Trezor
• Método: Sitio falso de descarga de Trezor
• Exfil: Probablemente intente distribuir malware o robar frases semilla si los usuarios descargan e instalan el software malicioso.
• Indicadores: Hosting gratuito en Typedream, dominio no coincidente, marca Trezor
• Riesgo: CRÍTICO - Potencial de pérdida de activos de criptomonedas.
Pages with identical visual appearance (based on perceptual hash)
Found 2 other scans for this domain