Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1FD1254312284683B839157EC5724B37D3297914ECB5B1601B6E0A72E8EE5DC7EC3526E |
|
CONTENT
ssdeep
|
192:UJ1NIBlDmqRngcDmqRngdEYECvCCCVC41RGRj3nHCjOFm:oNimqRnggmqRngC1Raj3H2O8 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b8381ac3c6c7c6c7 |
|
VISUAL
aHash
|
cfcfc3c3dfc3c39f |
|
VISUAL
dHash
|
9c1816161016162c |
|
VISUAL
wHash
|
cfcfc3c3df838080 |
|
VISUAL
colorHash
|
07600030000 |
|
VISUAL
cropResistant
|
9c1816161016162c |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.