Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T104A1BEF4E261596709B7C7D6AE621B7A31E4A309D986058002FCC3ADDF8BC44FD4349A |
|
CONTENT
ssdeep
|
96:n8EoPB2Vgd6l26lwhmf398w0F+vm2msExKkhUSoqhJStdA32fx:8EoPegd6l26l0mf398wS+vm2msEckhU/ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d9867299cca2b3e2 |
|
VISUAL
aHash
|
ff18181818181890 |
|
VISUAL
dHash
|
613114b2b2323322 |
|
VISUAL
wHash
|
ff1818181819dbfd |
|
VISUAL
colorHash
|
38000400038 |
|
VISUAL
cropResistant
|
613114b2b2323322 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Malicious code is obfuscated using 2372 techniques to evade detection by security scanners and make reverse engineering more difficult.