Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T112147614FB0207C484F9BCD5949772E4A041CE2FA34A6597252F53F67CCACA63EA239D |
|
CONTENT
ssdeep
|
384:/HgJWIVlJTy4yLMiVH8z2IVvg/py2pLaQlmXBwJlVIXv4kcYQUo0Wo3mNKX:4J/wS2AqpL0wTVIXv4dUo0Wo3mN2 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b8396c3c316ccec5 |
|
VISUAL
aHash
|
81c3ffcfcf9fc3c3 |
|
VISUAL
dHash
|
3b1b001c1c2a3737 |
|
VISUAL
wHash
|
8181dfcfc79f8181 |
|
VISUAL
colorHash
|
06400030000 |
|
VISUAL
cropResistant
|
3b1b001c1c2a3737 |
• Ameaça: Falsificação de identidade
• Alvo: Clientes DHL
• Método: Roubo de credenciais
• Exfil: /events2/login.cfm
• Indicadores: Formulários, Branding
• Risco: Moderado
The site attempts to collect user credentials (email and password) through a login form.
Pages with identical visual appearance (based on perceptual hash)
Found 10 other scans for this domain