Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T12C61431BDA0637384F9A016C3A6F13CDD236C448E34E5BA82EABC07D52D11988575DA7 |
|
CONTENT
ssdeep
|
96:T3aO5eUa3InVb71dRUhLbgua84wOi39utUJzYQ:L5Iqb7LRUL5Bb9yUD |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c7f8ecd8f2c09826 |
|
VISUAL
aHash
|
fffc002020183020 |
|
VISUAL
dHash
|
004040c0c0f0c0c4 |
|
VISUAL
wHash
|
ffff3c3c30183030 |
|
VISUAL
colorHash
|
30000033000 |
|
VISUAL
cropResistant
|
0000003030000000,004040c0c0f0c0c4 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.