Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1F05189BA00689D7741C3C1F277B2A71B77C6C344DA57232126EAD39C1FC6E4ADDA6281 |
|
CONTENT
ssdeep
|
24:hR/CaTKalVF5cdm225jt1fLr/qL4T6Wmx9eEPKkArL5uvxRgiS800Fodu1nz2Tm:TtVLcdmJsl3QwKtP9vSoduoy |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c09c34a659d479b7 |
|
VISUAL
aHash
|
5300e2f878606700 |
|
VISUAL
dHash
|
96c596b1cbcdccc7 |
|
VISUAL
wHash
|
5770e2f8f8f46700 |
|
VISUAL
colorHash
|
39c02008000 |
|
VISUAL
cropResistant
|
96c596b1cbcdccc7 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.