Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T150818513102D4E3713910DE1E4D6A653D4EF429CCB60EC7978F8827E27D9E6480BABA9 |
|
CONTENT
ssdeep
|
48:xDT5mbsgDxwmwLAwLC3wCgwgwa6wCowowCqvwwzAwHwJZrsTXjgvGAZl8BBwh2ab:HmICzJNwrCXEvz/GbA |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d9d9662699996626 |
|
VISUAL
aHash
|
0000181818180000 |
|
VISUAL
dHash
|
f0ccb2b2b2f0e0f0 |
|
VISUAL
wHash
|
183c3c3c7c7c3c3c |
|
VISUAL
colorHash
|
000000001c0 |
|
VISUAL
cropResistant
|
8c4c706860303313,f0ccb2b2b2f0e0f0 |
• Ameaça: Phishing
• Alvo: Não especificado
• Método: Coleta de credenciais
• Exfil: Desconhecido
• Indicadores: Domínio suspeito, ofuscação JavaScript, envios de formulário.
• Risco: Alto
The phishing site is designed to steal user credentials by mimicking a legitimate login page. The attacker hopes users will enter their username and password, which the attacker will then steal. This is a simple but effective technique.
Javascript obfuscation is used to hide malicious code that may further steal information or redirect users.
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain