Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T14F73FB9A2455602A076740E394B72B89B7391C2FF92805E1A4B8C7F572ECCF5316BF4B |
|
CONTENT
ssdeep
|
768:wyWuP5y/WuBz11L6ZcGsbC/ut/zH9U8n+X/TQUN5M5RDfML5M6MvSSX8UVoqLhzB:2z5ITJvJyOloQzZs8oWQbp |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
ad2c656c65253e3c |
|
VISUAL
aHash
|
033f1f3f1b1ffffb |
|
VISUAL
dHash
|
867676d6766e4a42 |
|
VISUAL
wHash
|
033f0f3f030f272b |
|
VISUAL
colorHash
|
07000000c00 |
|
VISUAL
cropResistant
|
867676d6766e4a42,0008066969692d12 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Malicious code is obfuscated using 702 techniques to evade detection by security scanners and make reverse engineering more difficult.
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain