Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T14E728436A100B53F027782D1AB5A97DBD39682DAC5331B1112FC830CFFD5E669A161DB |
|
CONTENT
ssdeep
|
192:qvIjBTWKn2RSg/rkhGsuiu/S305Gyk950sdFrq/f/:5dWKn2xk/ubS3YGvrdZq3/ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8c1af6f33424b0f3 |
|
VISUAL
aHash
|
00000000ffffffff |
|
VISUAL
dHash
|
946171b71f162727 |
|
VISUAL
wHash
|
00000000ffffffff |
|
VISUAL
colorHash
|
0b003000180 |
|
VISUAL
cropResistant
|
0917171737272733,dcb3a36973b3b3db |
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.