Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T131C174301010EE770181D5D4F7E86B0F74C7C285CB5A634067FA879F6ADAD86DE2EAA1 |
|
CONTENT
ssdeep
|
96:nW6/gPRDtJX4yMauC9CvQUvb7oPWj857SJXcxMeSD:t/gPRD/T5UnjCxmD |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8fe0fc0ee01d833b |
|
VISUAL
aHash
|
fffc3e7f3d1f1fff |
|
VISUAL
dHash
|
800040c0d9707034 |
|
VISUAL
wHash
|
fff03030181c1edf |
|
VISUAL
colorHash
|
07401018000 |
|
VISUAL
cropResistant
|
800040c0d9707034,9a9a9e9c9d152519 |
• Ameaça: Kit de phishing para roubo de credenciais
• Alvo: Usuários do Adobe no Brasil
• Método: Formulário falso que rouba email
• Exfil: Dados enviados para servidor desconhecido
• Indicadores: Domínio não coincide, formulários detectados, JavaScript ofuscado
• Risco: ALTO - Roubo imediato de credenciais
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain