Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T18C03EA316110B93E215342E9E37127AE73B442C5C74B171696E8C32CAFC6D9EEC37A68 |
|
CONTENT
ssdeep
|
384:MdLIMo6fxwlrUmd6NNuX3UlSWxRBcWwFI6ta2nch5BXo5Jl20oAc3v9V8Yhtk:MaMY36juX3MxQVxnKmVc3v9VFhtk |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c343b938b8b84be3 |
|
VISUAL
aHash
|
ff0020000000ffff |
|
VISUAL
dHash
|
3bc4c8e0d0d43b38 |
|
VISUAL
wHash
|
ff303000003cffff |
|
VISUAL
colorHash
|
030000001c0 |
|
VISUAL
cropResistant
|
040bdb2b2bdb0b04,79756b63694d5d51,90603a1838304a14,30c0c0e8e0c158dc,e96b6beb6e5a5a11 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.