Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17253867291202837606F72D9F165B71A91D3D74ECA8357E1A1FC93AB0EDACA1FC17806 |
|
CONTENT
ssdeep
|
768:A16XWETrIWhCl2LBezP2tT2jWZ2pz2Gz2Yz2VP2tT2jqZ2o/x9bgWbgjbg2bgnje:A16XWETrvre/6sgkg/gEg8UHiEq |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b846c73391cd3c3c |
|
VISUAL
aHash
|
242593ffc7c7ffff |
|
VISUAL
dHash
|
cac9b6303c1c021e |
|
VISUAL
wHash
|
000093cfc7c7ffc3 |
|
VISUAL
colorHash
|
07006000080 |
|
VISUAL
cropResistant
|
cac9b6303c1c021e |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Malicious code is obfuscated using 216 techniques to evade detection by security scanners and make reverse engineering more difficult.
Found 10 other scans for this domain