Report - instant6-olux.com/

Report Overview

Visited public
2025-07-18 14:54:09
Tags
Submit Tags
URL
instant6-olux.com/
Finishing URL
instant6-olux.com/
IP / ASN
185.62.57.66
#62370 Snel.com B.V.
Title
Instant +6 Olux ™ - The Official App WebSite 2025 [UPDATED]

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
instant6-olux.com	unknown	2025-03-18	2025-07-18	2025-07-18	13 kB	452 kB	185.62.57.66
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-07-16	1.0 kB	36 kB	104.17.24.14
api.instant6-olux.com	unknown	2025-03-18	2025-07-18	2025-07-18	877 B	64 kB	172.67.167.160
d3e54v103j8qbb.cloudfront.net	unknown	2008-04-25	2016-03-11	2025-07-17	515 B	90 kB	54.230.245.192

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-07-18	medium	instant6-olux.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	instant6-olux.com/assets/languageSwitcher.js	ScriptElement	1.1 kB	2023-07-24	2025-07-19
Pretty URL instant6-olux.com/assets/languageSwitcher.js IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-24 11:10 Last Seen2025-07-19 02:26 Times Seen227 Hash 6dd666393aca76e7608e5ea0886102ae dc2f00219490ff31cbcbf1148e1a8e936aaf0531 65baaf73001c13bbb1ae1934c4267e35f27855d25a0f2d2ac3dd20f0df6d66ba Loading...

	instant6-olux.com/	ScriptElement	172 B	2025-07-18	2025-07-18
Pretty URL instant6-olux.com/ IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-18 14:54 Last Seen2025-07-18 14:54 Times Seen1 Hash 1c7bb20b603f2e80c12289e5a069852c 3eb28cc8b5e3f031d9155539e13e64a63096d401 227a79281da4d887c76421809709cd9de86cd290baed3f016ab80cccfc7557b5 Loading...

	instant6-olux.com/	ScriptElement	435 B	2023-03-14	2025-07-19
Pretty URL instant6-olux.com/ IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 10:45 Last Seen2025-07-19 02:26 Times Seen215 Hash 9654491a44ebf24e2758586599482b82 b4becc498cfc06d797a233d36bf2e6645476b53d 873b1577af7c21cc3661dd7524f4f8fa4c7735a5c96c170c988e47c29a85fe24 Loading...

	api.instant6-olux.com/dist/js/loader.js	ScriptElement	9.8 kB	2024-07-03	2025-07-19
Pretty URL api.instant6-olux.com/dist/js/loader.js IP 172.67.167.160 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-03 02:39 Last Seen2025-07-19 02:26 Times Seen206 Hash 3a609df0d4643fa4861a3ab6ba295bdc 1a50548665835183a7dcd1b8fe681bee9ff8003f 07355c339c1b5e618d742af78400302fc96ad1e601a08b554c4c3d24472a4fd6 Loading...

	instant6-olux.com/	ScriptElement	921 B	2023-03-07	2025-07-19
Pretty URL instant6-olux.com/ IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:03 Last Seen2025-07-19 02:26 Times Seen114 Hash 05e8aec230921e86b8424e3f21c820a8 bcac6a2bc89e462133bf76f4617bc84e1af80848 367755a8e20912bdec9e74f17c461c637dc01446f1b56cdcaa2de229c18e5621 Loading...

	instant6-olux.com/	EventHandler	16 B	2023-04-10	2025-07-21
Pretty URL instant6-olux.com/ IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57 Last Seen2025-07-21 06:50 Times Seen74997 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	instant6-olux.com/js/main-DSPV4u01.js	ScriptElement	2.6 kB	2025-04-26	2025-07-18
Pretty URL instant6-olux.com/js/main-DSPV4u01.js IP 185.62.57.66 ASN #62370 Snel.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 21:13 Last Seen2025-07-18 14:54 Times Seen2 Hash 2f49791e37c8da4135059e9662a89723 e039a38834093d572a7b7caac063be5bfb3c9819 2fdd32c28c4bdd2df83ca4a03ac01ea39654c094c53da061a7c81857b91b2e0b Loading...

	d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63ff7eb9b635e5274ea76eb1	ScriptElement	90 kB	2023-03-07	2025-07-21
Pretty URL d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63ff7eb9b635e5274ea76eb1 IP 54.230.245.192 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-21 06:50 Times Seen125280 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

HTTP Transactions (34)

URL IP Response Size

GET instant6-olux.com/images/login-ico.webp

185.62.57.66

200 OK

160 B

URL GET
instant6-olux.com/images/login-ico.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
160 B (160 bytes)
Hash
a75b8d44f1d64b55f09bb0d27230de5d
a49a5d0a8cd0f7e100e71baa83da6eb230c47fc8
bc273fb4ca58d238d33fb2850f6b4f85dfff7915a61b99c7f522137fb953eed4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/login-ico.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 160
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-a0"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/css/form-components-C3EY00un.css

185.62.57.66

200 OK

15 kB

URL GET
instant6-olux.com/css/form-components-C3EY00un.css
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
ASCII text
Size
15 kB (14953 bytes)
Hash
c08850ec269e94e90fd50da7494e9051
26f1e930eccb3b69a01efca6d01d5c6493c3c4a3
d71ec8513892f8f88a67d76c2d6a45adff35954c504e42a2de8592c7cf867cc2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/form-components-C3EY00un.css HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css
content-length: 14953
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-3a69"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/trade-ico-1.webp

185.62.57.66

200 OK

2.6 kB

URL GET
instant6-olux.com/images/trade-ico-1.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.6 kB (2570 bytes)
Hash
24c08aa452a71b2a27142a3c7edc2502
d36157850870fc7e988154b6ea838e127d1abe19
a262b5ece960c794198f7f4095da6feca932e21dc0154a420cab1560c68964e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/trade-ico-1.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 2570
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-a0a"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/software.webp

185.62.57.66

200 OK

98 kB

URL GET
instant6-olux.com/images/software.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
98 kB (97556 bytes)
Hash
bec7cfdad52cbf7469e28cb11b8ad53f
342273dab7778386615d2227a30422c5cb10588d
3d6096de47d2d719e412dc3e4d7317c4cfd695c1e68c4296f3520b8ae1cf5df0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/software.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 97556
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-17d14"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/story.webp

185.62.57.66

200 OK

22 kB

URL GET
instant6-olux.com/images/story.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
22 kB (22180 bytes)
Hash
1763872d868228ab35ccecb6d3ee50d7
74cc787d20f3b40ae3323bbf06729f815e725c34
19993a92a30c72ce19a281e21acd9b5726a82eae298511b442d0eed207d37399

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/story.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 22180
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-56a4"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/feature-ico-1.webp

185.62.57.66

200 OK

596 B

URL GET
instant6-olux.com/images/feature-ico-1.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
596 B (596 bytes)
Hash
d3d68e852c6bddc18b66c99bcccf8aa7
7e1f7efefe336e277f3632e407c1c3a0f8977a7f
99817bd16a06e41079ac5fcc2f41ad7df6bc936b735284e34b6616f2943e1b84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/feature-ico-1.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 596
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-254"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/main-bg.webp

185.62.57.66

200 OK

14 kB

URL GET
instant6-olux.com/images/main-bg.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1830, Scaling: [none]x[none], YUV color, decoders should clamp
Size
14 kB (13572 bytes)
Hash
04ead8655ef362336ac092ad7dcccb7c
a99467e0938b01ccde196b450535ad3829a4f421
8d993712b9cbdd57f6d9a779d81fcd94765f28896879020587f2b4eb668c2579

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/main-bg.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/css/styles-DWt_ChF3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 13572
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-3504"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/css/styles-DWt_ChF3.css

185.62.57.66

200 OK

33 kB

URL GET
instant6-olux.com/css/styles-DWt_ChF3.css
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
ASCII text, with very long lines (32699), with no line terminators
Size
33 kB (32699 bytes)
Hash
fef333a36e0b7ed06ed1277f23f4bd1f
4b313e0753b443767323189c030b0a06b565218c
3d849c0b323ee31c36955306cece352bb5b309712431c263528ba9c2800596f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/styles-DWt_ChF3.css HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css
content-length: 32699
last-modified: Tue, 18 Mar 2025 17:43:41 GMT
etag: "67d9b0cd-7fbb"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/js/main-DSPV4u01.js

185.62.57.66

200 OK

2.6 kB

URL GET
instant6-olux.com/js/main-DSPV4u01.js
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
JavaScript source, ASCII text, with very long lines (2550)
Size
2.6 kB (2551 bytes)
Hash
2f49791e37c8da4135059e9662a89723
e039a38834093d572a7b7caac063be5bfb3c9819
2fdd32c28c4bdd2df83ca4a03ac01ea39654c094c53da061a7c81857b91b2e0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main-DSPV4u01.js HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: application/javascript
content-length: 2551
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-9f7"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/join-ico-2.webp

185.62.57.66

200 OK

5.8 kB

URL GET
instant6-olux.com/images/join-ico-2.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.8 kB (5804 bytes)
Hash
bc95dbef838e9f582f765998f46044ff
50422c8b08d3a32407dae15ebcfb9b9815166014
e76960304e0fef4a7291ff9ba26799e5ed6e61c879a6e39e0ded1b332eea7097

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/join-ico-2.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 5804
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-16ac"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/logo.png

185.62.57.66

200 OK

2.9 kB

URL GET
instant6-olux.com/images/logo.png
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2902 bytes)
Hash
026da06dfd7723e01fd62e0087f2c4b4
c05c08595fa05ca82d9fe322cdd626b953260e3b
887f76bc30c56f90c92e0bee6f7027664e5e18b6c6318ea9d336c1f7a1562044

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/png
content-length: 2902
last-modified: Tue, 18 Mar 2025 17:41:41 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "67d9b055-b56"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
age: 8
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zlCVItQsyTRnv3c%2BoyOnIyhPjQ%2BfeMOe6XkvI2XvTCXdOnL38ZMBjYvZKxYHDRTrylUxCvAc%2F2zhhSlujAU0Ic7BeOuXm5zRyI9yX9wjG%2FB7vd4%3D"}]}
cf-ray: 9612cf87fc2d8477-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET instant6-olux.com/images/offers-2.webp

185.62.57.66

200 OK

30 kB

URL GET
instant6-olux.com/images/offers-2.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (30516 bytes)
Hash
2d38ac48b8e71686e3fddc4804ae03bd
067b4c302672c92bec9b3a3cbd5a4c151a559a5d
9b9872b1c6141d0e9566cdb7a500d263a89b8e8e58c3b692e114b122390b82f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/offers-2.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 30516
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-7734"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/feature-ico-3.webp

185.62.57.66

200 OK

436 B

URL GET
instant6-olux.com/images/feature-ico-3.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
436 B (436 bytes)
Hash
cad8f593496a1407ba14acfac55e38b6
51b0d4d86b292d2908bfebb657b6048a73e2f300
d35e29e168da92fc00aa02df95bf643b5232739259242dcb13e0c3fa0ede7871

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/feature-ico-3.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 436
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-1b4"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/favicon.ico

185.62.57.66

200 OK

2.9 kB

URL GET
instant6-olux.com/images/favicon.ico
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2902 bytes)
Hash
026da06dfd7723e01fd62e0087f2c4b4
c05c08595fa05ca82d9fe322cdd626b953260e3b
887f76bc30c56f90c92e0bee6f7027664e5e18b6c6318ea9d336c1f7a1562044

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:49 GMT
content-type: image/x-icon
last-modified: Tue, 18 Mar 2025 17:41:42 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rO5bRfzyG20YIM1YS%2FGySfngt1WylqYM5NzxYl2iI4WErlwmNVau3QSibZ42V2GVEAsI0880E9YqHaCDJ5Q3wHvdIthS18JhdcoRa9Mw5vvqJiM%3D"}]}
age: 8
cache-control: max-age=14400
cf-cache-status: HIT
etag: W/"67d9b056-b56"
content-encoding: br
cf-ray: 9612cf8e2fb53c6d-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/flags/4x3/gb.svg

104.17.24.14

200 OK

538 B

URL GET
cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/flags/4x3/gb.svg
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://instant6-olux.com/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
SVG Scalable Vector Graphics image
Size
538 B (538 bytes)
Hash
d3ddd6025a06a78535b0d432d14905bf
2b5148a18b90f933e47bf895c26d61a52d21d9d8
825310f9bcc8892559317bfc87fc28d5d7bad06c02d562b5740aafcf4b040803

HTTP Headers

GET /ajax/libs/flag-icon-css/3.4.6/flags/4x3/gb.svg HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 18 Jul 2025 14:53:49 GMT
content-type: image/svg+xml; charset=utf-8
content-length: 307
cf-ray: 9612cf8e4f025694-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-21a"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1250138
expires: Wed, 08 Jul 2026 14:53:49 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Y0uRAeEfaUT9Gsh7F5Xjxj9g%2BW%2FvMKVW8jcaDB7FqmzzP%2B5TPDhJ1OxmD2%2BHD7QCBnaMJWigSFlJly2n57g%2F57%2ByWjUM2tw0pDZlf%2FXiHyTRMusoxXlecCR6zHlHH8XeWzzUcIu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET instant6-olux.com/images/feature-ico-2.webp

185.62.57.66

200 OK

568 B

URL GET
instant6-olux.com/images/feature-ico-2.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
568 B (568 bytes)
Hash
863d3b3318389b1b49297a845cdec052
518bb4aa9a7afc64c341d5155860282baa4d483d
98f58d009d9a6b9f3cfac1f1c9395f0208126987f66e9c85f7a2c44f4967ed54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/feature-ico-2.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 568
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-238"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET api.instant6-olux.com/dist/js/loader.js

172.67.167.160

200 OK

9.8 kB

URL GET
api.instant6-olux.com/dist/js/loader.js
IP
172.67.167.160:443
ASN
#13335 CLOUDFLARENET

Requested by
https://instant6-olux.com/
Certificate
IssuerGoogle Trust Services
Subjectinstant6-olux.com
FingerprintD6:A5:05:9C:9E:F2:53:22:74:ED:97:B8:AA:C1:78:CD:57:FE:00:B2
ValidityMon, 14 Jul 2025 17:41:33 GMT - Sun, 12 Oct 2025 18:39:00 GMT

File type
JavaScript source, ASCII text, with very long lines (9753)
Size
9.8 kB (9817 bytes)
Hash
3a609df0d4643fa4861a3ab6ba295bdc
1a50548665835183a7dcd1b8fe681bee9ff8003f
07355c339c1b5e618d742af78400302fc96ad1e601a08b554c4c3d24472a4fd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dist/js/loader.js HTTP/1.1
Host: api.instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: application/javascript
content-length: 3529
server: cloudflare
last-modified: Tue, 25 Jun 2024 08:23:23 GMT
etag: "2659-61bb29c7054c0;636e4f2032640-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=432000, must-revalidate
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ULAinwj%2Fn80ixQWRfq3UAhEOOjdzKOxMHrfcfMpuH2IunlTQVU%2FccjACCmhMLUCgOXx3OskaY66lwA005Yt%2FpoebcGu1%2BsnzAzGhqaa5jQ2r0RM%3D"}]}
cf-ray: 9612cf8a9b0156a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET instant6-olux.com/images/coin.webp

185.62.57.66

200 OK

3.9 kB

URL GET
instant6-olux.com/images/coin.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.9 kB (3894 bytes)
Hash
ada9bca22b019a0e2c7f699f2f4b06ed
2976bbfd1ea9790e20fe0f8971ecdcc02235b74f
009a1cf7af31e68015e147a32bb1df4403444b64c2b7b3fdd31da6d8af6d17da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/coin.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/css/styles-DWt_ChF3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 3894
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-f36"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/

185.62.57.66

200 OK

72 kB

URL User Request GET
instant6-olux.com/
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1561)
Size
72 kB (72184 bytes)
Hash
1ceda36da5b4f24170de0643d6ebadd5
da6d779280adee8665da88a2da3035cc64de1183
19cfab8421573e7d6de20e92f404f2d6899118641fb82ca60b411544b8beed1d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:47 GMT
content-type: text/html
content-length: 72184
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-119f8"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/trade-ico-2.webp

185.62.57.66

200 OK

3.3 kB

URL GET
instant6-olux.com/images/trade-ico-2.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.3 kB (3332 bytes)
Hash
12a18c4be62c5d04ae9114602a41143b
67461df6730b3a4c2137905f5804a0797c915528
43574bf508f662d8edbff666e95aa686b6bc44b5ac083331879b38bfde8a2424

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/trade-ico-2.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 3332
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-d04"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/offers-1.webp

185.62.57.66

200 OK

46 kB

URL GET
instant6-olux.com/images/offers-1.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
46 kB (45718 bytes)
Hash
fb327c71b15254854203e9b5d3770208
d7116fde548ad3a90a2b39db4bab3746c6464b6c
4858bddf8a898062a721c34fecf03746524b44037677639cce270644586309da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/offers-1.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 45718
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-b296"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/join-ico-3.webp

185.62.57.66

200 OK

9.6 kB

URL GET
instant6-olux.com/images/join-ico-3.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
9.6 kB (9642 bytes)
Hash
59cbbf55951b7bd0d9ab0097acff2c37
f62b4793f9093642c725e80a65114b3f6a62226f
798bc27978460e0ad310943d60c9c92c49ecafb1af68ff3b240a85277f5f7f96

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/join-ico-3.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 9642
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-25aa"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/join.webp

185.62.57.66

200 OK

38 kB

URL GET
instant6-olux.com/images/join.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
38 kB (38480 bytes)
Hash
d49af9d5cc6d9edcd6af157278f87ce2
0372837530e54fde065f3a0dd943419b87ba056e
e6b4e484fc866818122c2015cd83520b41b08644773bb704e1f0e438892bb339

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/join.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 38480
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-9650"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/coin-top.webp

185.62.57.66

200 OK

2.0 kB

URL GET
instant6-olux.com/images/coin-top.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.0 kB (1980 bytes)
Hash
9199859f479980313b3c59670d249049
90df9afaee75e66c5478d0a301cccafbead0c1e2
de67d7875c7bd66f3157273baa84e4a3fec775ad52c1bfb66a2d35eaec7a31d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/coin-top.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/css/styles-DWt_ChF3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 1980
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-7bc"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/css/normalize-Dt0uo6dg.css

185.62.57.66

200 OK

1.9 kB

URL GET
instant6-olux.com/css/normalize-Dt0uo6dg.css
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
ASCII text, with very long lines (1863), with no line terminators
Size
1.9 kB (1863 bytes)
Hash
335a5b1351b11607e99d488a4fb435ec
676a51c37049628da4ec2431f80472f2ccc02b70
d95ef29b3a8ea5e57fc7385f0b2f798c2843268c45b727d3a87eb5ef85504a4c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/normalize-Dt0uo6dg.css HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css
content-length: 1863
last-modified: Tue, 18 Mar 2025 17:43:41 GMT
etag: "67d9b0cd-747"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

GET d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63ff7eb9b635e5274ea76eb1

54.230.245.192

200 OK

90 kB

URL GET
d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63ff7eb9b635e5274ea76eb1
IP
54.230.245.192:443
ASN
#16509 AMAZON-02

Requested by
https://instant6-olux.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /js/jquery-3.5.1.min.dc5e7f18c8.js?site=63ff7eb9b635e5274ea76eb1 HTTP/1.1
Host: d3e54v103j8qbb.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://instant6-olux.com
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 20 Jul 2020 17:53:02 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 17 Jul 2025 18:30:09 GMT
cache-control: max-age=84600, must-revalidate
etag: W/"dc5e7f18c8d36ac1d3d4753a87c98d0a"
vary: accept-encoding
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
age: 74171
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Hwl_Lbhw5Z2FmvF3LAmeRIJKo1ikdk-uOdhWsq5E8kLZRIMkifDlKg==
X-Firefox-Spdy: h2

GET instant6-olux.com/assets/languageSwitcher.css

185.62.57.66

200 OK

2.6 kB

URL GET
instant6-olux.com/assets/languageSwitcher.css
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
ASCII text
Size
2.6 kB (2630 bytes)
Hash
34f9a98a85713580849f35db50174b74
f7d7c21843e2df3ec700d6564d092aaa9c9ec298
8ea67b667dec3a3e1f29bed71a5f30c4338465e05f880586f2cb970159996e39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/languageSwitcher.css HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css
content-length: 2630
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-a46"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

GET api.instant6-olux.com/dist/css/integration.css

172.67.167.160

200 OK

52 kB

URL GET
api.instant6-olux.com/dist/css/integration.css
IP
172.67.167.160:443
ASN
#13335 CLOUDFLARENET

Requested by
https://instant6-olux.com/
Certificate
IssuerGoogle Trust Services
Subjectinstant6-olux.com
FingerprintD6:A5:05:9C:9E:F2:53:22:74:ED:97:B8:AA:C1:78:CD:57:FE:00:B2
ValidityMon, 14 Jul 2025 17:41:33 GMT - Sun, 12 Oct 2025 18:39:00 GMT

File type
ASCII text, with very long lines (52366), with no line terminators
Size
52 kB (52366 bytes)
Hash
74670b86d313fc9c1cfecc4577320a49
2e6f390b8455dc82ad94c868fd31c9e485d448b6
862218562bab023f4a3b3d4b4ad6f5319d8efce39f59e2eafe99e9b080805102

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dist/css/integration.css HTTP/1.1
Host: api.instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css
content-length: 9144
server: cloudflare
last-modified: Wed, 02 Apr 2025 23:20:26 GMT
etag: "cc8e-631d3e5f28280;636e4f2032640-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=432000, must-revalidate
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Vyn3a3miJkzwyxDA23u5ADcrI57HkPctf3P0fwhp5erJwMiiJeQCLZUOh6m4pPnfQvKYnvziQ%2FcEeUjQPhYKq0Hx%2ByLoh3aHiN4Q6YHKcNc1oh4%3D"}]}
cf-ray: 9612cf8aab1456a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET instant6-olux.com/images/feature-ico-4.webp

185.62.57.66

200 OK

312 B

URL GET
instant6-olux.com/images/feature-ico-4.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
312 B (312 bytes)
Hash
6e25636aaacc95ae70396ab67f18c743
e9b90ab4151eb7897ef2c2d916fde8e8d8eba882
468af1cd5e78fde50e213c8af3904f9f95b2039fcf0d5c8f99d3e8fc1801fb16

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/feature-ico-4.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 312
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-138"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css

104.17.24.14

200 OK

34 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://instant6-olux.com/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
ASCII text, with very long lines (33818), with no line terminators
Size
34 kB (33818 bytes)
Hash
79fb36dda0a235254c3e31bf00b57065
89eb6d6adc16de57dda315fb2b5602bfe5728ccf
623702bd791d4553ae7226c2f48e26052e359573eb59fa98d819e9b248593e7c

HTTP Headers

GET /ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: text/css; charset=utf-8
content-length: 1466
cf-ray: 9612cf8d0aaa56bd-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-841a"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 696010
expires: Wed, 08 Jul 2026 14:53:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=91lSNy%2Fg0lFJDzRW%2F0Jwzbyw8j9VSyTe9wkglz1DW1AUyp9W0dHJsNs1t%2FU55vrs9pPvGiUoxn26xDGyPd%2Bi1OV7kB%2BnTuI4U0V%2B75hLsayBA9PaabBLQquIalKZk0Na4FLjKVFq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET instant6-olux.com/images/main-title-arc.webp

185.62.57.66

200 OK

856 B

URL GET
instant6-olux.com/images/main-title-arc.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
856 B (856 bytes)
Hash
cbd9b061c9e4c7c877d4996d1a8f9d1e
96182d5d351b713cc079d3dd8f83de0713c22dd0
d89248897edb7a3d3081466851a26ef93e923f256c26871660134b8470ec0b72

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/main-title-arc.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/css/styles-DWt_ChF3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 856
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-358"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/main-img.webp

185.62.57.66

200 OK

27 kB

URL GET
instant6-olux.com/images/main-img.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
27 kB (26634 bytes)
Hash
5de3ad99292ba276b90c519328de73be
dbd1f33ed5452babcc265284f7493cb652c68fc5
ad8ec323de4339ae1489ab12d507423bf5854e8db71144c46049bf21fb5be49e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/main-img.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 26634
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-680a"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/images/join-ico-1.webp

185.62.57.66

200 OK

4.5 kB

URL GET
instant6-olux.com/images/join-ico-1.webp
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.5 kB (4528 bytes)
Hash
e50132bdc9d37bb5888a95884f52f6dd
4191168d53b222c0a9081ebd0bd269f9972bd5be
94dde27979d17fa15137746220b94353d18ab82d7baa4b6ae805f231be505770

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/join-ico-1.webp HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: image/webp
content-length: 4528
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-11b0"
accept-ranges: bytes
X-Firefox-Spdy: h2

GET instant6-olux.com/assets/languageSwitcher.js

185.62.57.66

200 OK

1.1 kB

URL GET
instant6-olux.com/assets/languageSwitcher.js
IP
185.62.57.66:443
ASN
#62370 Snel.com B.V.

Requested by
https://instant6-olux.com/
Certificate
IssuerLet's Encrypt
Subjectinstant6-olux.com
Fingerprint22:78:4C:80:44:1B:FE:55:F3:A1:BA:D0:7C:53:F5:BE:F7:23:37:8B
ValiditySun, 18 May 2025 19:38:07 GMT - Sat, 16 Aug 2025 19:38:06 GMT

File type
JavaScript source, ASCII text
Size
1.1 kB (1109 bytes)
Hash
6dd666393aca76e7608e5ea0886102ae
dc2f00219490ff31cbcbf1148e1a8e936aaf0531
65baaf73001c13bbb1ae1934c4267e35f27855d25a0f2d2ac3dd20f0df6d66ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/languageSwitcher.js HTTP/1.1
Host: instant6-olux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://instant6-olux.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Fri, 18 Jul 2025 14:53:48 GMT
content-type: application/javascript
content-length: 1109
last-modified: Tue, 18 Mar 2025 17:43:39 GMT
etag: "67d9b0cb-455"
expires: Fri, 25 Jul 2025 14:53:48 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (34)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET