Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A29187736004683DA60B46D1FB25337D66BB830ECA1A0818F1FD93E5A3C6DE4C937595 |
|
CONTENT
ssdeep
|
96:T1AvF3oRtCnUo+Z7K8rn8Oo7DKj6IVHaCCLt4:T1C+REnUN7Rj8eeE |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b8c6ce39ce463866 |
|
VISUAL
aHash
|
dfffc7c7c3cfb3df |
|
VISUAL
dHash
|
32689c9c9c9926b6 |
|
VISUAL
wHash
|
df3f030f000c00df |
|
VISUAL
colorHash
|
070010000c0 |
|
VISUAL
cropResistant
|
32689c9c9c9926b6 |
Fake République Française site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.