Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T14902B72BF2013735028B4299FBA783DEB7248154E21E1B4566BD438D67C0DD9C63AAE5 |
|
CONTENT
ssdeep
|
192:gJDDu7YXjSxZQzWK46kJloI5gpPhL9TcSRpLs3:eD+T0WK4XJlFYPV9ISTLs3 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b82d6725869e32c7 |
|
VISUAL
aHash
|
878b8f8f8f8f9fc7 |
|
VISUAL
dHash
|
2c3a3c3c3c1c3c2c |
|
VISUAL
wHash
|
838b878f8f879e06 |
|
VISUAL
colorHash
|
07002480000 |
|
VISUAL
cropResistant
|
2c3a3c3c3c1c3c2c |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.
Pages with identical visual appearance (based on perceptual hash)