Help
RSS
API
Feed
Maltego
Contact
Domain > gamma.salesconsole.aws.dev
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2022-05-14
52.85.75.117
(
ClassC
)
2026-01-14
18.161.6.103
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyServer: CloudFrontDate: Wed, 14 Jan 2026 02:30:52 GMTContent-Type: text/htmlContent-Length: 167Connection: keep-aliveLocation: https://gamma.salesconsole.aws.dev/X-Cache: Redirect from cloudfrontVia: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P1X-Amz-Cf-Id: KEuAc_RcOdeIa9OP0K1CUsmgXobTecMfG0nXUe0dFNzUyIFTWDIpAg html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>CloudFront/center>/body>/html>
Port 443
HTTP/1.1 403 ForbiddenContent-Type: text/htmlContent-Length: 8767Connection: keep-aliveDate: Tue, 13 Jan 2026 23:45:26 GMTLast-Modified: Tue, 13 Jan 2026 23:43:27 GMTETag: 11aa7a33720a980f56ee8085018c3cc6x-amz-server-side-encryption: AES256x-amz-version-id: _hoGrVlDGg7nWc124faZIkryeNIerD0YAccept-Ranges: bytesServer: AmazonS3Strict-Transport-Security: max-age63072000; includeSubdomains; preloadX-Content-Type-Options: nosniffReferrer-Policy: strict-origin-when-cross-originContent-Security-Policy: default-src self;font-src self data: m.media-amazon.com/images/G/01/katal/ d1uznvntk80v7s.cloudfront.net/fonts/;frame-src self blob: us-east-1.quicksight.aws.amazon.com vision-dev.iad.corp.amazon.com uat-awstableau.iad.corp.amazon.com awstableau.corp.amazon.com idp-integ.federate.amazon.com midway-auth.amazon.com formidev.sharepoint.com gamma.command-center.support.aws.a2z.com command-center.support.aws.a2z.com gamma.argos.sales.aws.dev cloudfrontsigner.ninjas.security.a2z.com prod-useast-c.online.tableau.com;script-src self badgephotos.corp.amazon.com internal-cdn.amazon.com midway-auth.amazon.com unsafe-inline;style-src self badgephotos.corp.amazon.com internal-cdn.amazon.com midway-auth.amazon.com unsafe-inline alpha.salesconsole-int.wwro.aws.dev;img-src self blob: data: badgephotos.corp.amazon.com internal-cdn.amazon.com midway-auth.amazon.com badges.corp.amazon.com wisdom.corp.amazon.com idp.federate.amazon.com dbx9vjc35rvpm.cloudfront.net;connect-src self gamma-us-west-2-fa-files.s3.us-west-2.amazonaws.com bedrock-agentcore.us-west-2.amazonaws.com gamma.gateway.suds.wwro.aws.dev streaming.gamma.gateway.suds.wwro.aws.dev gamma.telemetry.suds.wwro.aws.dev midway-auth.amazon.com s3.amazonaws.com s3.us-east-1.amazonaws.com s3.us-west-2.amazonaws.com sts.us-east-1.amazonaws.com sts.us-west-2.amazonaws.com cognito-idp.us-east-1.amazonaws.com cognito-idp.us-west-2.amazonaws.com cognito-identity.us-east-1.amazonaws.com cognito-identity.us-west-2.amazonaws.com dataplane.rum.us-east-1.amazonaws.com dataplane.rum.us-west-2.amazonaws.com pinpoint.us-east-1.amazonaws.com pinpoint.us-west-2.amazonaws.com 0s62bmu3aj.execute-api.us-east-1.amazonaws.com unagi-na.amazon.com d3knqfixx3sbls.cloudfront.net us-east-1.quicksight.aws.amazon.com api.us-east-1.consensus.a2z.com code.amazon.com maxis-service-prod-iad.amazon.com sentry.amazon.com sadevops-gamma.auth.us-east-1.amazoncognito.com gamma.org-service.sales.aws.a2z.com registry-gamma.auth.us-east-1.amazoncognito.com bulk-baseline-data-632739958588.s3.us-east-1.amazonaws.com beta.tfc.a2z.com api.beta.tfc.a2z.com tfchub-beta.auth.us-west-2.amazoncognito.com awsinvui-static-site-456111495114-us-east-1.s3.us-east-1.amazonaws.com gamma.investments.wwro.aws.dev us-west-2.gamma.gateway.suds.wwro.aws.dev cunningham-bulk-request-bucket-603843593996-us-east-1.s3.us-east-1.amazonaws.com gamma.salesconsole.aws.dev api.beta.spec-req.sales.aws.a2z.com spec-req.sales.aws.a2z.com sb-conv-data-gamma.s3.amazonaws.com;frame-ancestors self https://aws-crm--int1.sandbox.my.salesforce.com https://aws-crm--int1.sandbox.lightning.force.com https://aws-crm--int2.sandbox.my.salesforce.com https://aws-crm--int2.sandbox.lightning.force.com https://aws-crm--uat1.visualforce.com https://aws-crm--uat1.sandbox.my.salesforce.com https://aws-crm--uat1.sandbox.lightning.force.com https://aws-crm--uat2.visualforce.com https://aws-crm--uat2.sandbox.my.salesforce.com https://aws-crm--uat2.sandbox.lightning.force.com https://aws-crm--uat3.sandbox.lightning.force.com/ https://aws-crm--genairohit.sandbox.my.salesforce.com https://aws-crm--genairohit.sandbox.lightning.force.com https://aws-crm--genairohit--c.sandbox.vf.force.com https://aws-crm--genairohit--c.visualforce.com https://midway-auth.amazon.com https://sandbox-amazon.highspot.com/;object-src noneVary: Accept-EncodingX-Cache: Error from cloudfrontVia: 1.1 1cbc126937aab64e42a05f9bf2f8daee.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P1X-Amz-Cf-Id: _QxGSsVOP3fTac6-_OalXsEZjavAfCYfnP5nGJcSp4MqiFY9D3qQHAAge: 9927 !DOCTYPE html>html>head> script typetext/javascript> function getParameterByName(name, url) { if (!url) url window.location.href; name name.replace(/\\/g, \\$&); var regex new RegExp(?& + name + ((^&#*)|&|#|$)), results regex.exec(url); if (!results) return null; if (!results2) return ; return decodeURIComponent(results2.replace(/\+/g, )); } function getValidURL(url) { try { return new URL(url); } catch (e) { return null; } } /*! * JavaScript Cookie v2.1.4 * https://github.com/js-cookie/js-cookie * * Copyright 2006, 2015 Klaus Hartl & Fagner Brack * Released under the MIT license */ ;(function (factory) { var registeredInModuleLoader false; if (typeof define function && define.amd) { define(factory); registeredInModuleLoader true; } if (typeof exports object) { module.exports factory(); registeredInModuleLoader true; } if (!registeredInModuleLoader) { var OldCookies window.Cookies; var api window.Cookies factory(); api.noConflict function () { window.Cookies OldCookies; return api; }; } }(function () { function extend () { var i 0; var result {}; for (; i arguments.length; i++) { var attributes arguments i ; for (var key in attributes) { resultkey attributeskey; } } return result; } function init (converter) { function api (key, value, attributes) { var result; if (typeof document undefined) { return; } // Write if (arguments.length > 1) { attributes extend({ path: / }, api.defaults, attributes); if (typeof attributes.expires number) { var expires new Date(); expires.setMilliseconds(expires.getMilliseconds() + attributes.expires * 864e+5); attributes.expires expires; } // Were using expires because max-age is not supported by IE attributes.expires attributes.expires ? attributes.expires.toUTCString() : ; try { result JSON.stringify(value); if (/^\{\/.test(result)) { value result; } } catch (e) {} if (!converter.write) { value encodeURIComponent(String(value)) .replace(/%(23|24|26|2B|3A|3C|3E|3D|2F|3F|40|5B|5D|5E|60|7B|7D|7C)/g, decodeURIComponent); } else { value converter.write(value, key); } key encodeURIComponent(String(key)); key key.replace(/%(23|24|26|2B|5E|60|7C)/g, decodeURIComponent); key key.replace(/\(\)/g, escape); var stringifiedAttributes ; for (var attributeName in attributes) { if (!attributesattributeName) { continue; } stringifiedAttributes + ; + attributeName; if (attributesattributeName true) { continue; } stringifiedAttributes + + attributesattributeName; } return (document.cookie key + + value + stringifiedAttributes); } // Read if (!key) { result {}; } // To prevent the for loop in the first place assign an empty array // in case there are no cookies at all. Also prevents odd result when // calling get() var cookies document.cookie ? document.cookie.split(; ) : ; var rdecode /(%0-9A-Z{2})+/g; var i 0; for (; i cookies.length; i++) { var parts cookiesi.split(); var cookie parts.slice(1).join(); if (cookie.charAt(0) ) { cookie cookie.slice(1, -1); } try { var name parts0.replace(rdecode, decodeURIComponent); cookie converter.read ? converter.read(cookie, name) : converter(cookie, name) || cookie.replace(rdecode, decodeURIComponent); if (this.json) { try { cookie JSON.parse(cookie); } catch (e) {} } if (key name) { result cookie; break; } if (!key) { resultname cookie; } } catch (e) {} } return result; } api.set api; api.get function (key) { return api.call(api, key); }; api.getJSON function () { return api.apply({ json: true }, .slice.call(arguments)); }; api.defaults {}; api.remove function (key, attributes) { api(key, , extend(attributes, { expires: -1 })); }; api.withConverter init; return api; } return init(function () {}); })); var policy getParameterByName(policy); var kpid getParameterByName(kpid); var exp getParameterByName(exp); var sig getParameterByName(sig); var encodedTargetUrl getParameterByName(encodedTargetUrl); var decodedTargetUrl encodedTargetUrl && decodeURIComponent(encodedTargetUrl); var validTargetURL getValidURL(decodedTargetUrl) if (policy && kpid && exp && sig) { var curr_origin window.location.origin; Cookies.set(CloudFront-Policy, policy, { secure: true, sameSite: None, expires: 1 }); Cookies.set(CloudFront-Key-Pair-Id, kpid, { secure: true, sameSite: None, expires: 1 }); Cookies.set(CloudFront-Expiration, exp, { secure: true, sameSite: None, expires: 1 }); Cookies.set(CloudFront-Signature, sig, { secure: true, sameSite: None, expires: 1 }); if(validTargetURL && curr_origin validTargetURL.origin) { window.location.replace(decodedTargetUrl); } else { window.location.replace(curr_origin); } } else if (Cookies.get(CloudFront-Policy)){ //Nothing to do. } else { var referrer window.location var encodedUrl encodeURIComponent(referrer.href) window.location.replace(https://cloudfrontsigner.ninjas.security.a2z.com/sign?encodedTargetUrl+encodedUrl); } /script>/head>body>p>Redirecting you for Auth/p>!-- This one should be a Bindle that doesnt exist, and triggers a 400 response from ECS. -->div styledisplay:none idbindlediv>amzn1.bindle.resource.3bmwyg7gf6n4vs66uuqa/div>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]