Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1F9D2FD3AA0116A3755D383E26B31076FB7E0C2CADEA3161952F9C35D4FE7C54CE2A122 |
|
CONTENT
ssdeep
|
768:d+0Hev3ZcKvHiKvLzKvvnKv/W4KvcFKvn7KvfyOuLHohB:s0Hev3ZcKvHiKvLzKvvnKv/W4KvcFKvi |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8ed7223438dd8697 |
|
VISUAL
aHash
|
00383c3c3c100001 |
|
VISUAL
dHash
|
6c68717069303609 |
|
VISUAL
wHash
|
3c383c3c3c3c40ff |
|
VISUAL
colorHash
|
38001000070 |
|
VISUAL
cropResistant
|
6c68717069303609 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.