Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A0414A613466C85712BAA2D1EEA12F8E31D1D30DCD8A1A02D1FCA3AB1BE5D54FCA7521 |
|
CONTENT
ssdeep
|
24:hR/CN9XhjAkxIgK5Fm22VCy9CR3/63/9QBpw/s7/n7/en/Rn/gz/77X/S6/iP:TQgFmJVCyK6P9Qnssjnje/R/g777SuiP |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
dcdc33720cc8b393 |
|
VISUAL
aHash
|
fcfcbc78d8c0c000 |
|
VISUAL
dHash
|
613032b0b00485c9 |
|
VISUAL
wHash
|
fcfcfc78d8f0c000 |
|
VISUAL
colorHash
|
1e200038000 |
|
VISUAL
cropResistant
|
b080826a628280e6,613032b0b00485c9 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.