Report - omal.in/or/

Report Overview

Visited public
2023-12-08 07:57:00
Tags
URL
omal.in/or/
Finishing URL
omal.in/
IP / ASN
103.211.217.166
#394695 PUBLIC-DOMAIN-REGISTRY
Title
Chemical Manufacturer & Exporter Company in India | OMAL

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

132

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-08 05:09:48	454 B	7.7 kB	104.17.24.14
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-08 05:47:56	426 B	85 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-08 07:46:22	1.6 kB	50 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	461 B	18 kB	142.250.74.106
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-12-07 08:24:05	1.3 kB	3.9 kB	104.16.123.175
omal.in	unknown	2010-12-17	2018-11-27 14:10:54	2023-12-07 17:06:08	14 kB	586 kB	103.211.217.166

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed
2023-12-08	medium	omal.in	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	unknown	EventHandler	38 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:02 Last Seen2025-05-09 09:56 Times Seen23434 Hash 43e28c5553d54ed2964bd5147521769b 0a2b8c3db330a47aa7b9195e6dfdf944adb9240d d63026c985dc46aeb316574b7bf1828080c906238e35d5e34cb80414c0e70d23 Loading...

	omal.in/assets/js/theme.js	ScriptElement	174 kB	2023-12-07	2024-08-20
Pretty URL omal.in/assets/js/theme.js IP 103.211.217.166 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 17:44 Last Seen2024-08-20 16:27 Times Seen16 Hash de359d8182f6af8b49ee5150ed80e828 58537f374fd6aa7d0dd78cc706a362f91a9713b0 67bb02a5611ec477b9faaf6162e13b921636edfa9f00246e47ba2cddb2f2328f Loading...

	omal.in/	ScriptElement	252 B	2023-12-07	2024-08-20
Pretty URL omal.in/ IP 103.211.217.166 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-07 17:44 Last Seen2024-08-20 16:27 Times Seen16 Hash 1af64ce8254e245cd18c173e40b29291 c0832ff223d40a97ed5dcf09d7be98bc7f9da661 46bbcc7c94fef0f5dc57ea1276a78f8aea2edac57952f462399918469f7c444f Loading...

	www.googletagmanager.com/gtag/js?id=G-0VGK6V0TDE	ScriptElement	242 kB	2023-12-08	2023-12-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-0VGK6V0TDE IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 08:57 Last Seen2023-12-08 08:57 Times Seen1 Hash 9119dd06b3dc92b533f3ae536a5b4473 f4083ad5aa23ef94ff6915591d350e88dfaecd33 8d6ab997b4fb68aa442838bbf39dfa22bd079a83a0fd7a13977e456b7871e622 Loading...

	unpkg.com/default-passive-events	ScriptElement	947 B	2023-03-07	2025-05-05
Pretty URL unpkg.com/default-passive-events IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:46 Last Seen2025-05-05 15:47 Times Seen123 Hash 90daed64e8b10cafea0e96933d1a24c9 e781066f4b30c3b161460d311eaad8b6a76a967e 10bcc81da88bb60d7f0b8df32d4bc7953268fb4d44e9a9d8aca98c020c579c10 Loading...

	omal.in/assets/js/theme-script.js	ScriptElement	10 kB	2023-12-07	2024-08-20
Pretty URL omal.in/assets/js/theme-script.js IP 103.211.217.166 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 17:44 Last Seen2024-08-20 16:27 Times Seen16 Hash e0df191f57c95aac840ba031a8ccc031 322aa8156b2c06febe06b35b72849b572d28bf2d f4a08bf685971157f69777c52a9e844f30940bdb174996d6dad933a67a7c9606 Loading...

	omal.in/	ScriptElement	1.6 kB	2023-12-07	2024-08-20
Pretty URL omal.in/ IP 103.211.217.166 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-07 17:44 Last Seen2024-08-20 16:27 Times Seen16 Hash ac9c963a137f57b1f092e50aa5ed0191 1548717e80f581cf52b3189780ab8da6b0cd67db 7d5d367a3143ce7fb6fc165272cc4863982a966e59807ed5b53afdb420b4f076 Loading...

	omal.in/assets/js/owl-carousel/owl.carousel.min.js	ScriptElement	44 kB	2023-03-08	2025-03-18
Pretty URL omal.in/assets/js/owl-carousel/owl.carousel.min.js IP 103.211.217.166 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44 Last Seen2025-03-18 16:08 Times Seen31 Hash 27344ab38e5cd5f8d4dc6f0c3f826aa2 f9185c870558b1597a123997b4456ed407e2f485 1eae6d03939b14aa8004216baf7eeea43065f3df2575087869a0bbd604a0e7e9 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js	ScriptElement	23 kB	2023-04-05	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 10:49 Last Seen2025-05-09 10:03 Times Seen1164 Hash c74e1b8c32903df80bfa35b92e96041c 8a474ec9b4f1d3573855f41286e43b0000a1dba5 4ffadde8da37f59253cb4cd5541262b6042ff2ca2308579fadb21bf802dfba89 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-09
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 10:20 Times Seen54727 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	connect.facebook.net/en_GB/sdk.js#xfbml=1&version=v4.0	ScriptElement	17 kB	2023-05-05	2025-05-09
Pretty URL connect.facebook.net/en_GB/sdk.js#xfbml=1&version=v4.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 10:20 Times Seen54127 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

HTTP Transactions (42)

URL IP Response Size

omal.in/or/

103.211.217.166

302 Found

0 B

URL User Request GET HTTP/1.1
omal.in/or/
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /or/ HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 08 Dec 2023 07:56:39 GMT
Server: Apache
Cache-Control: no-store
Location: /
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

omal.in/

103.211.217.166

200 OK

7.9 kB

URL User Request GET HTTP/1.1
omal.in/
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
7.9 kB (7906 bytes)
Hash
5b5b1d06f253205c19f1c17cad734789
d8a875df9b3c630e080db3b7b75df09579176586
05edc457e3bcbfe6ea731a73c1ac80e0dc95c296fdb71578e12308a5e7aacd21

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:40 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7906
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js

104.17.24.14

200 OK

6.7 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omal.in/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (23122)
Size
6.7 kB (6677 bytes)
Hash
93c1dd8416ac2af1850652d5b620a142
6a76e4c7db479053350580469aa010febfdcacd0
17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50

HTTP Headers

GET /ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 08 Dec 2023 07:56:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 6677
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-5add"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1315114
expires: Wed, 27 Nov 2024 07:56:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FRzPpdO%2FtAsXzhMe0auffTVs2lpXwdotIBWvG3rkOr4Cx%2FFIwU6%2F%2FqDZFguuaAm0%2BV%2BsvFfT7EnWHoTBjTiS8YSgCc5S7Z5IegBlmogpPX9Z99pa%2FEwrxJo0pT1mIdS%2F9Et3DQaq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83237408f8e2569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-0VGK6V0TDE

142.250.74.168

200 OK

84 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-0VGK6V0TDE
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://omal.in/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (7711)
Size
84 kB (84052 bytes)
Hash
9119dd06b3dc92b533f3ae536a5b4473
f4083ad5aa23ef94ff6915591d350e88dfaecd33
8d6ab997b4fb68aa442838bbf39dfa22bd079a83a0fd7a13977e456b7871e622

HTTP Headers

GET /gtag/js?id=G-0VGK6V0TDE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 07:56:41 GMT
expires: Fri, 08 Dec 2023 07:56:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84052
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

omal.in/assets/css/bootstrap.min.css

103.211.217.166

200 OK

31 kB

URL GET HTTP/1.1
omal.in/assets/css/bootstrap.min.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65342)
Size
31 kB (31250 bytes)
Hash
97e5d17235382617dc3a3fc45810aaba
5910a656d6c5d8b8f02f4d58848df0f20c1910a0
80b9db1fcf5c795588de4466215c04a20b57b4f57088305f94398494dbbb6ff7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/bootstrap.min.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Fri, 18 Aug 2023 13:27:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31250
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/robotofont.css

103.211.217.166

200 OK

320 B

URL GET HTTP/1.1
omal.in/assets/css/robotofont.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
320 B (320 bytes)
Hash
6a9c70ebc1132668b67786ee130e9213
04a764e2e75a54e1a5793eae39ee92187a16ff6a
003e4c8e9496b01e3298b677c51f9e694e7ad43c3e3839c07cf5f0dfcc351cb3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/robotofont.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:16:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 320
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/owl-carousel/owl.carousel.css

103.211.217.166

200 OK

1.9 kB

URL GET HTTP/1.1
omal.in/assets/css/owl-carousel/owl.carousel.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (539)
Size
1.9 kB (1873 bytes)
Hash
a00532a277eff418998f4b1563863850
a1dd071e22d84d7072160eac67a8097650802f97
b6c54c94c73497a1790f58261c17ff82467c9734b820f654b5828c3b9d63b14e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/owl-carousel/owl.carousel.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Fri, 03 Nov 2023 13:08:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1873
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/base.css

103.211.217.166

200 OK

2.0 kB

URL GET HTTP/1.1
omal.in/assets/css/base.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (388), with CRLF line terminators
Size
2.0 kB (1993 bytes)
Hash
5728af4d92416fb9f9ed4be14e8fab3c
5d297f62ece1a518dd2660a310b390cf7e3adabe
4586e8eb6e1b1d883351b70303a12eaf205401280a1358b5c688fc9dae829154

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/base.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Mon, 06 Nov 2023 10:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1993
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/responsive.css

103.211.217.166

200 OK

2.1 kB

URL GET HTTP/1.1
omal.in/assets/css/responsive.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (325), with CRLF line terminators
Size
2.1 kB (2059 bytes)
Hash
2e166d829f355348d80900c0fb6ab7b8
9e9933b714d2e6ab01df38487456f397b8066737
5fcf327632d298711e7afa61684ff56fca65ccee7f8f0c23f0b1bd0934554c7c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/responsive.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Wed, 22 Nov 2023 13:12:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2059
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/style.css

103.211.217.166

200 OK

2.8 kB

URL GET HTTP/1.1
omal.in/assets/css/style.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2808 bytes)
Hash
c879584f90b7dd4459a03fbebf40174e
0b98508d85276377c2b79633a8558eb22fed75f0
06d4e306c7423cb7b0a5c52a165ba90f9d1b638f3e2826064bc5041abc7383c3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/style.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Thu, 23 Nov 2023 06:41:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2808
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/unnafont.css

103.211.217.166

200 OK

269 B

URL GET HTTP/1.1
omal.in/assets/css/unnafont.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
269 B (269 bytes)
Hash
821a429b82e6881027b00f1b9262847a
22c1380753b00b16e62d7eae7e285c6abebc8ddb
addb2ca41a243a62b6938a079d2d520eefbb60b186002f30495d96ba04d99f11

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/unnafont.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:10:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 269
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/css/fontawesome-all.css

103.211.217.166

200 OK

13 kB

URL GET HTTP/1.1
omal.in/assets/css/fontawesome-all.css
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59116), with CRLF line terminators
Size
13 kB (12871 bytes)
Hash
4f044d29c6bcce334ad9982e7105a575
c0f3e0b82df90c2f5d6f60fc003e61f863c01761
972f3646ab343d4ea80bc1ac7d9a8d932a4294b111b8db9cd3bea012e0285fb0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/fontawesome-all.css HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Thu, 16 Nov 2023 13:19:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12871
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

omal.in/assets/js/owl-carousel/owl.carousel.min.js

103.211.217.166

200 OK

11 kB

URL GET HTTP/1.1
omal.in/assets/js/owl-carousel/owl.carousel.min.js
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (31997)
Size
11 kB (11414 bytes)
Hash
27344ab38e5cd5f8d4dc6f0c3f826aa2
f9185c870558b1597a123997b4456ed407e2f485
1eae6d03939b14aa8004216baf7eeea43065f3df2575087869a0bbd604a0e7e9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Mon, 21 Oct 2019 13:17:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11414
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

omal.in/assets/js/theme-script.js

103.211.217.166

200 OK

2.8 kB

URL GET HTTP/1.1
omal.in/assets/js/theme-script.js
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
2.8 kB (2802 bytes)
Hash
e0df191f57c95aac840ba031a8ccc031
322aa8156b2c06febe06b35b72849b572d28bf2d
f4a08bf685971157f69777c52a9e844f30940bdb174996d6dad933a67a7c9606

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/theme-script.js HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Mon, 06 Nov 2023 10:14:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2802
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

omal.in/assets/images/certified.webp

103.211.217.166

200 OK

8.6 kB

URL GET HTTP/1.1
omal.in/assets/images/certified.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
8.6 kB (8618 bytes)
Hash
13f8034c846548ff334bbbdff219e098
59bccbcbadf0e836117b7db02ce6fe2584803a09
1009454251d77ccfa502f399cfd1440073ef25be87e0bbe2c48462ae01adb795

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/certified.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:11:27 GMT
Accept-Ranges: bytes
Content-Length: 8618
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/logo.png

103.211.217.166

200 OK

6.8 kB

URL GET HTTP/1.1
omal.in/assets/images/logo.png
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
PNG image data, 390 x 62, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6804 bytes)
Hash
a3389b3033fe5ca96e7f6d9eee1850eb
2208fce8b02b224a9fd0862d4e79913e6b58bbfe
4f1bc0a61db4d2444acd3013ac5e1a61d9df8584945b40cf780b6c1c9671e3c6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/logo.png HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Fri, 03 Nov 2023 12:53:38 GMT
Accept-Ranges: bytes
Content-Length: 6804
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.131

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://omal.in/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omal.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:52:12 GMT
expires: Thu, 05 Dec 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 122670
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.131

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://omal.in/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omal.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:43:03 GMT
expires: Tue, 03 Dec 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 288819
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.131

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://omal.in/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omal.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:53:07 GMT
expires: Fri, 06 Dec 2024 04:53:07 GMT
cache-control: public, max-age=31536000
age: 97415
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

omal.in/assets/images/banner4.webp

103.211.217.166

200 OK

35 kB

URL GET HTTP/1.1
omal.in/assets/images/banner4.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
35 kB (34914 bytes)
Hash
0f404e881cfbb7d4683ee769ee375c8b
eccc62bcc1596f021141b50a4f7feaeb6ee734e8
927d18cacb516bd092dd67d1bc46566f0ac12279b6e628b0f10500582ae7d44f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/banner4.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Mon, 20 Nov 2023 06:20:22 GMT
Accept-Ranges: bytes
Content-Length: 34914
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/banner1.webp

103.211.217.166

200 OK

29 kB

URL GET HTTP/1.1
omal.in/assets/images/banner1.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1346x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
29 kB (29214 bytes)
Hash
d4dfd79616418b150bc72c458314f899
0ca16eefcdb8a8c6565a0f3b6a8059fb0e8c3043
50dbcf2a6eb781369e40cb8070d51197db9ac059b3ae8fc40ca23719b6826f23

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/banner1.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 04:49:50 GMT
Accept-Ranges: bytes
Content-Length: 29214
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/fonts/fa-regular-400.woff2

103.211.217.166

200 OK

14 kB

URL GET HTTP/1.1
omal.in/assets/fonts/fa-regular-400.woff2
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13588, version 331.-31327\012- data
Size
14 kB (13588 bytes)
Hash
847712aaabbeba674afdda86d31cab17
c07631a91ee71c0a1a84a3151db42b1f2d9a9692
b3b8c21edfe6c5e402fdc607366fd8d15949a65914f58134733dc68922bc8d61

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/fa-regular-400.woff2 HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://omal.in/assets/css/fontawesome-all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Wed, 13 Jan 2021 17:58:06 GMT
Accept-Ranges: bytes
Content-Length: 13588
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2

omal.in/assets/js/theme.js

103.211.217.166

200 OK

56 kB

URL GET HTTP/1.1
omal.in/assets/js/theme.js
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65446), with CRLF line terminators
Size
56 kB (55622 bytes)
Hash
de359d8182f6af8b49ee5150ed80e828
58537f374fd6aa7d0dd78cc706a362f91a9713b0
67bb02a5611ec477b9faaf6162e13b921636edfa9f00246e47ba2cddb2f2328f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/theme.js HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Mon, 20 Nov 2023 05:54:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 55622
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

omal.in/assets/images/banner3.webp

103.211.217.166

200 OK

29 kB

URL GET HTTP/1.1
omal.in/assets/images/banner3.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1346x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
29 kB (28864 bytes)
Hash
bf06af18e31c0d14e6c9c613ec194b1e
42d8f31cebd1aaa1bac7e78dbf3d95f5f00627db
95de3359701dbbbdd8d7b7a8ca57e49ae7fb992346015d6b6d2dbda8c6af18f3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/banner3.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 04:49:50 GMT
Accept-Ranges: bytes
Content-Length: 28864
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/banner2.webp

103.211.217.166

200 OK

60 kB

URL GET HTTP/1.1
omal.in/assets/images/banner2.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1346x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
60 kB (60090 bytes)
Hash
2d4dacf0d95e62891fcaacb2bf237448
e85695b31b833cd2a8a114628ec19a5ddbd6b4ff
dcb1bae7a4a436be081cdeb242eec62a0b25c67155964af7b41865e9d9026110

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/banner2.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:41 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 04:49:50 GMT
Accept-Ranges: bytes
Content-Length: 60090
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/bg2.webp

103.211.217.166

200 OK

2.6 kB

URL GET HTTP/1.1
omal.in/assets/images/bg2.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.6 kB (2634 bytes)
Hash
67e67f95939e74dbd17eb9752c743612
db93fcda06d0b57f3680e4a3dddc60a37c23d301
9bf9f6ab4020ed1fd948165c8631d3673fcf4a69e5a0094eed12066febe1b684

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/bg2.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:13:12 GMT
Accept-Ranges: bytes
Content-Length: 2634
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/bg4.webp

103.211.217.166

200 OK

3.6 kB

URL GET HTTP/1.1
omal.in/assets/images/bg4.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
3.6 kB (3582 bytes)
Hash
a42571aed5c15b105aa2c9cd0050b0c6
a42bc5234f78f416683f2c6e9a2f936e5db80f63
e7ff14020c9ca2489425ae91b3bba83b7f4a20d7537bcd142f193612b16ab1c4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/bg4.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:12:19 GMT
Accept-Ranges: bytes
Content-Length: 3582
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/bg3.webp

103.211.217.166

200 OK

3.8 kB

URL GET HTTP/1.1
omal.in/assets/images/bg3.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
3.8 kB (3772 bytes)
Hash
2b532f652cb2f74febf4e0990d66f7d1
b22054fa3f8f212a3ba781814ab0b78b4592fcb1
23973f6ea626c4d85051d12009e7d6f5467ad17008a1eceb562e1556f5bc35f0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/bg3.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:12:21 GMT
Accept-Ranges: bytes
Content-Length: 3772
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/bg5.webp

103.211.217.166

200 OK

1.5 kB

URL GET HTTP/1.1
omal.in/assets/images/bg5.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.5 kB (1458 bytes)
Hash
da345360a6f24beabcd5a2dd73a211a1
eeab663e2db2fcc4e6cffe685705efaba831a3e5
abbb5fcc42502f7f7feda63ebd54771e6dda80ffeaa493a4282b43056dad10af

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/bg5.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:12:57 GMT
Accept-Ranges: bytes
Content-Length: 1458
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/fonts/fa-brands-400.woff2

103.211.217.166

200 OK

78 kB

URL GET HTTP/1.1
omal.in/assets/fonts/fa-brands-400.woff2
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78472, version 331.-31327\012- data
Size
78 kB (78472 bytes)
Hash
0c9f225e8f69c622f681cf1ed973cc3d
9e355abda14ee62a7987b2ba7e2e887d33337e25
529d0a7b3944929222155bca3272ba1a87acc2faa09b2ed26a713872b7ff8794

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/fa-brands-400.woff2 HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://omal.in/assets/css/fontawesome-all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Wed, 13 Jan 2021 17:58:06 GMT
Accept-Ranges: bytes
Content-Length: 78472
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

omal.in/assets/images/whatsapp-button.png

103.211.217.166

200 OK

2.1 kB

URL GET HTTP/1.1
omal.in/assets/images/whatsapp-button.png
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2053 bytes)
Hash
c796ffba6957fdf6e731235550a12539
5826a11e9e014e3b9470d86477dc0f48a6aa0b1f
e9c8ff2adba66fb4af130ac5fc7a6ffac2dcca444bd09399ed6573224f6695f7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/whatsapp-button.png HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sat, 18 Nov 2023 07:14:49 GMT
Accept-Ranges: bytes
Content-Length: 2053
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

omal.in/assets/images/map.webp

103.211.217.166

200 OK

5.3 kB

URL GET HTTP/1.1
omal.in/assets/images/map.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
5.3 kB (5264 bytes)
Hash
e9441fb112355144c06c72a8af25e529
1b4082faa8430f92c104b87e6c4c94bebc9f38c4
c2553250f96cafc885f74536c1293e0be72c06fe3feeb971ebeee8ed4a629f6c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/map.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 06:56:40 GMT
Accept-Ranges: bytes
Content-Length: 5264
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/webp

fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap

142.250.74.106

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://omal.in/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
18 kB (17510 bytes)
Hash
b25e610cddbe95b4beb6e3d59d84a8b7
ec0f3d5f81f722b3178f7b871aa25f9843cbb96f
751a642d2a1268b1775ed42f1e99a8361f423f4f1fb7924fb376d69949eab362

HTTP Headers

GET /css2?family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 07:56:42 GMT
date: Fri, 08 Dec 2023 07:56:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

omal.in/assets/images/gadenpipe.webp

103.211.217.166

200 OK

6.2 kB

URL GET HTTP/1.1
omal.in/assets/images/gadenpipe.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.2 kB (6216 bytes)
Hash
b6dac04accb3d923c7dc452df7bfd583
5ebb5051cf6f866102e8b2f03e30ccc7edb8bb1a
28893faf871e5414dbda1f3c7700cf4fdb025273fd9d0c535d306615e4349950

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/gadenpipe.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 06:34:43 GMT
Accept-Ranges: bytes
Content-Length: 6216
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/pvcwire-cables.webp

103.211.217.166

200 OK

11 kB

URL GET HTTP/1.1
omal.in/assets/images/pvcwire-cables.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
11 kB (10844 bytes)
Hash
93625d0f9350661fb6263ecc98c01015
0dde5f1a8c80a57385113c83574c39258b9b4174
46bde6def7aa336c76f986327a9061eaed9e7487d9edb6967b3fadcac9dba819

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/pvcwire-cables.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 06:34:42 GMT
Accept-Ranges: bytes
Content-Length: 10844
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/fonts/fa-solid-900.woff2

103.211.217.166

200 OK

80 kB

URL GET HTTP/1.1
omal.in/assets/fonts/fa-solid-900.woff2
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327\012- data
Size
80 kB (80252 bytes)
Hash
9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://omal.in/assets/css/fontawesome-all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Wed, 13 Jan 2021 17:58:06 GMT
Accept-Ranges: bytes
Content-Length: 80252
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

omal.in/assets/images/productsbg.webp

103.211.217.166

200 OK

50 kB

URL GET HTTP/1.1
omal.in/assets/images/productsbg.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
50 kB (49958 bytes)
Hash
ed518f6b767adf83a036c6cd1ec56f9c
abe732e5e96251a5e36f3435a4c57290cad547a4
200888fb042bd097631c7a5c9d7848d2874294ed977153a7f689cd3a3ee7e136

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/productsbg.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/assets/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:34:01 GMT
Accept-Ranges: bytes
Content-Length: 49958
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/webp

omal.in/assets/images/favicon.ico

103.211.217.166

200 OK

2.8 kB

URL GET HTTP/1.1
omal.in/assets/images/favicon.ico
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
PNG image data, 61 x 57, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2781 bytes)
Hash
e6eb345dbeaa25a44a40c687f562b8ea
0bc52fd63ca7a3427b4a8ba51b224547d4ef83cc
6b9e9fc244f09ce3f47975eefe293a551308433c4e24d30f1900faec84bf7805

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/favicon.ico HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Fri, 03 Nov 2023 12:54:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2781
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon

unpkg.com/default-passive-events@2.0.0

104.16.123.175

302 Found

947 B

URL GET HTTP/2
unpkg.com/default-passive-events@2.0.0
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omal.in/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
947 B (947 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /default-passive-events@2.0.0 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omal.in/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:56:41 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /default-passive-events@2.0.0/dist/index.umd.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HG79WT2EYSBRA401X68AVD2Q-arn
cf-cache-status: HIT
age: 969889
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8323740999325699-OSL
X-Firefox-Spdy: h2

omal.in/assets/images/formbg.webp

103.211.217.166

200 OK

17 kB

URL GET HTTP/1.1
omal.in/assets/images/formbg.webp
IP
103.211.217.166:443
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

Requested by
https://omal.in/
Certificate
IssuercPanel, Inc.
Subjectomal.in
FingerprintF3:54:AD:D0:EC:58:02:FB:91:01:68:DF:F8:AF:7C:FC:58:72:B1:E9
ValidityThu, 23 Nov 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
17 kB (16820 bytes)
Hash
5089141cf59b95e9307da2cc5987d617
42fcb08f953c3c0fd8fe0746f305cbc58104dfa2
302868ce4fb65c792c5b338762cdf3bd64934bb6cca716c5b6e65932d4e7b702

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/formbg.webp HTTP/1.1
Host: omal.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/assets/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 07:56:42 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2023 05:36:12 GMT
Accept-Ranges: bytes
Content-Length: 16820
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/webp

unpkg.com/default-passive-events

104.16.123.175

302 Found

947 B

URL GET HTTP/2
unpkg.com/default-passive-events
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omal.in/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
947 B (947 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /default-passive-events HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://omal.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:56:41 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /default-passive-events@2.0.0
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HH46Q5AWY9JXYED8K8QGV0H8-arn
cf-cache-status: HIT
age: 142
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 83237408f8ba5699-OSL
X-Firefox-Spdy: h2

unpkg.com/default-passive-events@2.0.0/dist/index.umd.js

104.16.123.175

200 OK

947 B

URL GET HTTP/2
unpkg.com/default-passive-events@2.0.0/dist/index.umd.js
IP
104.16.123.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://omal.in/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (991), with no line terminators
Size
947 B (947 bytes)
Hash
451a3e57b43ca8d3e588219ee6c4c01d
a4ca032430c3004877100ecd25b507b4ca0cd091
e10f47fa226cc7ecda354796bc6ccd6ebcefd94fdee051a25504d1e3202caefc

HTTP Headers

GET /default-passive-events@2.0.0/dist/index.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omal.in/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash