Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17E5309B1F220609D5233C7CAB9A2DF9DE263B48CDF62D2A4DDA5916E1AD1DF24C11C81 |
|
CONTENT
ssdeep
|
1536:yL3cfpk4TC1ZgByTg9KQltAH6PhWvtX5VIQ:0eX0J |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
bd5596c56171c545 |
|
VISUAL
aHash
|
269f9381c1ff8f8f |
|
VISUAL
dHash
|
6c32231b032a3828 |
|
VISUAL
wHash
|
269f918381bf8f07 |
|
VISUAL
colorHash
|
07008000603 |
|
VISUAL
cropResistant
|
6c32231b032a3828 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Malicious code is obfuscated using 527 techniques to evade detection by security scanners and make reverse engineering more difficult.
Drainer supports multiple blockchain networks and checks for high-value tokens on each chain before executing drain operations.
Found 3 other scans for this domain