Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T164D12BE9D779B2BED0868BDCDF1399247B9E31FD67104B0855BC9F980983F94AD08480 |
|
CONTENT
ssdeep
|
96:TVvFuaAFaS7FYbWGVKWG6CYxG6q3wiD7YjU76geI2Opud7QeDifu+:p8JFHmDNNG68wy8QiI2VQnfZ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
be3ed9c1c1e16065 |
|
VISUAL
aHash
|
5f9f031fffffffff |
|
VISUAL
dHash
|
b83c2eae0c3d4900 |
|
VISUAL
wHash
|
0f830303e300ffff |
|
VISUAL
colorHash
|
07600010000 |
|
VISUAL
cropResistant
|
b83c2eae0c3d4900,822371d9d3e33125,0110083030100801 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.