Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T122D11F209264B91BD2D764B8E7A2DF1B2144C286D24B677462B4435EE9CDEE1CF306FC |
|
CONTENT
ssdeep
|
96:Tu4F8Oo6ZJOV7JExW9tBZKieiSqQwg6WIjMr07:fCOo6uVixW9tBZKiei9tW4o07 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
a2192766d99966dc |
|
VISUAL
aHash
|
07071f1f1f273f7f |
|
VISUAL
dHash
|
ffdfbbb3b3cdd7ff |
|
VISUAL
wHash
|
03071f1f1f07073f |
|
VISUAL
colorHash
|
07000000e00 |
|
VISUAL
cropResistant
|
ffdfbbb3b3cdd7ff |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.