Domain > auth.demo.coveware.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-12-06	108.157.142.91 (ClassC)
2023-12-22	108.139.10.33 (ClassC)
2025-09-12	18.161.6.74 (ClassC)

HTTP/1.1 200 OKContent-Type: text/html;charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Fri, 12 Sep 2025 12:13:59 GMTServer: ServerContent-Language: en-USSet-Cookie: XSRF-TOKEN2f3c8dc6-e2c9-4aff-ada6-9d5a04cebfc6; Path/; Secure; HttpOnly; SameSiteLaxx-amz-cognito-request-id: fe2818e3-09fa-4372-b490-1b0b1f80ada8X-Content-Type-Options: nosniffX-XSS-Protection: 1; modeblockCache-Control: no-cache, no-store, max-age0, must-revalidatePragma: no-cacheExpires: 0Strict-Transport-Security: max-age31536000 ; includeSubDomainsX-Frame-Options: DENYX-Cache: Miss from cloudfrontVia: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P1X-Amz-Cf-Id: jLeorHLPremgwfth-zGrejPUpuPxEp3oG2Hx4sWw2tPxaIcUNSn7JQ

!DOCTYPE html>html langen>head>head>    link hrefnull/null/css/bootstrap.min.css relstylesheet        mediascreen />    link hrefnull/null/css/cognito-login.css relstylesheet        mediascreen />        title>Signin/title>    script srcnull/null/js/amazon-cognito-advanced-security-data.min.js >/script>    script>    function getAdvancedSecurityData(formReference) {        if (typeof AmazonCognitoAdvancedSecurityData  undefined) {            return true;        }        // UserpoolId is not available on frontend for springboard. We do not use userPoolId        // anyway other than put in context data.         var userPoolId  ;        var clientId  getUrlParameter(client_id);        var username  ;        var usernameInput  document.getElementsByName(username)0;        if (usernameInput && usernameInput.value) {            username  usernameInput.value;        }        var asfData  AmazonCognitoAdvancedSecurityData.getData(username, userPoolId, clientId);        if (typeof asfData  undefined) {            return true;        }        if (formReference && formReference.cognitoAsfData) {            formReference.cognitoAsfData.value  asfData        }        return true;    }    function getUrlParameter(name) {        name  name.replace(/\/, \\).replace(/\/, \\);        var regex  new RegExp(\\?& + name + (^&#*));        var results  regex.exec(location.search);        return results  null ?  : decodeURIComponent(results1.replace(/\+/g,  ));    }    function onSubmit(evt, formRef) {        formRef.querySelector(buttontypesubmit).disabled  true;        if (!!formRef.submitted) {            evt.preventDefault();            return false;        } else {            formRef.submitted  true;            return getAdvancedSecurityData(formRef);        }    }    function onSubmitLoginForm (formRef) {        formRef.querySelector(inputnamesignInSubmitButton).disabled  true;        getAdvancedSecurityData(formRef)    }/script>    meta nameviewport contentwidthdevice-width, initial-scale1>/head>/head>body spellcheckfalse>    div classcontainer>        div classmodal-dialog>            div classmodal-content background-customizable modal-content-mobile visible-xs visible-sm>                div>div>                    div classbanner-customizable>                        center>                                                    /center>                    /div>                /div>/div>                div classmodal-body>                    div>div>    /div>/div>                    div>                        div>div>    /div>/div>                        div>div>    /div>/div>                                            /div>                /div>            /div>                        div classmodal-content background-customizable modal-content-mobile visible-md visible-lg>                div>div>                    div classbanner-customizable>                        center>                                                    /center>                    /div>                /div>/div>                div classmodal-body>                    div>div>    /div>/div>                    div>                        div>                            div>div>    /div>/div>                            div>div>    /div>/div>                        /div>                                            /div>                /div>            /div>        /div>    /div>    script>    document.addEventListener(DOMContentLoaded, function () {        var inputs  document.querySelectorAll(input);        inputs.forEach((input) > {            input.addEventListener(input, function () {                var name  this.name;                var value  this.value;                var matchingInputs  document.querySelectorAll(`inputname${name}`);                matchingInputs.forEach((match) > {                    if (match ! this) {                        match.value  value;                    }                });            });        });    });/script>/body>/html>

Subdomains

Date	Domain	IP
abisko.coveware.com	2025-05-14	18.223.127.187
auth.demo.coveware.com	2025-09-12	18.161.6.74

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > auth.demo.coveware.com

Is this malicious?

DNS Resolutions

Port 80

Port 443

Subdomains