Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T13B22C7B720057E17431382F86B2DBF97B39350CCDA4A0558BAE5D55A7AC1D68ED043CA |
|
CONTENT
ssdeep
|
192:sEx+Zp4v/gAl5IKq9BGpp8txcXH+jM8Sx1uXoLsT3Z7:r+jw/H5eGpp8tOXH+jM8lXoLo7 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8dcc66739d922333 |
|
VISUAL
aHash
|
23901e3c18082603 |
|
VISUAL
dHash
|
66a6a47072ead447 |
|
VISUAL
wHash
|
f7f0163c1e386623 |
|
VISUAL
colorHash
|
39e00008000 |
|
VISUAL
cropResistant
|
2ac8cdc5a7a63535,66a6a47072ead447 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.