Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1EE03F7AA75F0303203B760B295AF230F3B336157640688857A7DCBC11FA6D9B9553B6E |
|
CONTENT
ssdeep
|
768:mNkFb9iwPiPiuuNlYm6UNfpFIRDqOPRDuPIhkiBmDijgSWuanfJ6P:7V6quuNlYmZNLkmI8FE |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
94776496964d969c |
|
VISUAL
aHash
|
66c0d8181f0f1b1f |
|
VISUAL
dHash
|
d4933032383c36be |
|
VISUAL
wHash
|
66c0d81c1f0f1f57 |
|
VISUAL
colorHash
|
30006000040 |
|
VISUAL
cropResistant
|
d4933032383c36be |
• Threat: Distribution of game modifications for Roblox.
• Target: Users seeking Roblox game mods.
• Method: Offering downloads for the Xeno Executor, a Roblox script executor.
• Exfil: No apparent data exfiltration.
• Indicators: Website dropcheats.pro distributing game modifications.
• Risk: LOW - Potential risk of downloading unauthorized software, but no credential harvesting apparent.