Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T115C2E7719546723C076B42C6E2362369F1FF5382E722952D85F9932AA7DCE86DCB600C |
|
CONTENT
ssdeep
|
384:flakKDIPjBPjqmF1ri4AozaQNdwtXXporCZV8mbsvESxBuegOc9:fIZNmQ2NdwtXZ4CZmAsvxBzxq |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c3e53c323c6cc396 |
|
VISUAL
aHash
|
067e7e746e6c0020 |
|
VISUAL
dHash
|
94cac8c9c8c8e2d4 |
|
VISUAL
wHash
|
467e7e7c3e7c0024 |
|
VISUAL
colorHash
|
30000c00008 |
|
VISUAL
cropResistant
|
0f0f2f33330f0f0e,94cac8c9c8c8e2d4 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Malicious code is obfuscated using 10 techniques to evade detection by security scanners and make reverse engineering more difficult.