Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T184D253D68328D13FE406C7ECE698695032AE52EFF580C584B6E49F2F4DF05991C8D3A2 |
|
CONTENT
ssdeep
|
768:hqyVdWCNdzQtLpUZL1ICsSCw3GsNagC78RQDCvWFlH2CHCo28zDk:h5nJNd8tFUl1rs1w3XNaD78RQGvWFlHY |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
e9b93581c9cca695 |
|
VISUAL
aHash
|
7bc8cff9f9711000 |
|
VISUAL
dHash
|
da9b9c315bc3b2a0 |
|
VISUAL
wHash
|
7bc8cff9f9711000 |
|
VISUAL
colorHash
|
39601008000 |
|
VISUAL
cropResistant
|
da9b9c315bc3b2a0 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters credit/debit card details including CVV and expiration. Card data is captured and can be used for fraudulent transactions or sold on dark web markets.