Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T14842B5B0526C9D3E5153C1DAE3763B2E30DA92ADDE8F030056E963FA06D7C45FD2A051 |
|
CONTENT
ssdeep
|
384:kMW8evRsNknSKhhPEzlcbWvHrII17yaYvXoKhiue:kMbVBIIXse |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d8f5d777088982ca |
|
VISUAL
aHash
|
feeeff5911810118 |
|
VISUAL
dHash
|
120eb0b3b32d69f9 |
|
VISUAL
wHash
|
fefeff5901250808 |
|
VISUAL
colorHash
|
02600008000 |
|
VISUAL
cropResistant
|
22681565cc969393,2200216969691620,120eb0b3b32d69f9 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.