Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T16591516947184E3DA24387C8EA3B723F93EB8108DA081A54DDED433D42D7DA1EC2B9D5 |
|
CONTENT
ssdeep
|
96:xyJqOf/1AndBBvQy3HCqHeVd2ktgo85PyZ:xyJqOf/1K8RqHeV8ktt85PyZ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
cc3333cc66999966 |
|
VISUAL
aHash
|
0018181818181800 |
|
VISUAL
dHash
|
083032323232320c |
|
VISUAL
wHash
|
00181818d8d8d8d0 |
|
VISUAL
colorHash
|
38000000006 |
|
VISUAL
cropResistant
|
083032323232320c |
• Ameaça: Falsificação
• Alvo: Cherry.fun
• Método: Falsificação de domínio
• Exfil: Potencialmente acesso à carteira
• Indicadores: Incompatibilidade de domínio, JavaScript ofuscado.
• Risco: ALTO
The site is designed to trick users into connecting their cryptocurrency wallets, likely to drain their funds or steal their seed phrase. This is accomplished via a 'Select Wallet' button.
Pages with identical visual appearance (based on perceptual hash)