Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T131C174301010EE770181D5D4F7E86B0F74C7C285CB5A634067FA879F6ADAD86DE2EAA1 |
|
CONTENT
ssdeep
|
96:nW6/gPRDtJX4yMauC9CvQUvb7oPWj857SJXcxMeSD:t/gPRD/T5UnjCxmD |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8fe0fc0ee01d833b |
|
VISUAL
aHash
|
fffc3e7f3d1f1fff |
|
VISUAL
dHash
|
800040c0d9707034 |
|
VISUAL
wHash
|
fff03030181c1edf |
|
VISUAL
colorHash
|
07401018000 |
|
VISUAL
cropResistant
|
800040c0d9707034,9a9a9e9c9d152519 |
• Amenaza: Kit de phishing para robo de credenciales
• Objetivo: Usuarios de Adobe en Brasil
• Método: Formulario falso que roba email
• Exfil: Datos enviados a servidor desconocido
• Indicadores: Dominio no coincide, formularios detectados, JavaScript ofuscado
• Riesgo: ALTO - Robo inmediato de credenciales
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain