Domain > ndm-mosaic-uat-receipt-monitor.auth.ap-southeast-2.amazoncognito.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-08-07	3.104.68.12 (ClassC)
2023-12-05	13.237.68.107 (ClassC)
2024-11-14	3.105.234.161 (ClassC)
2024-12-12	52.64.119.245 (ClassC)
2025-04-25	52.65.190.61 (ClassC)
2025-05-08	13.211.192.144 (ClassC)
2025-06-10	54.153.130.110 (ClassC)
2025-06-15	54.206.247.163 (ClassC)
2025-08-13	13.238.210.171 (ClassC)
2025-10-24	13.239.68.31 (ClassC)

HTTP/1.1 200 OKDate: Thu, 14 Nov 2024 07:12:50 GMTContent-Type: text/html;charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: XSRF-TOKENd58e245a-528d-4e6a-882b-88621b3e7c96; Path/;

!DOCTYPE html>html langen>head>head>    link hrefnull/null/css/bootstrap.min.css relstylesheet        mediascreen />    link hrefnull/null/css/cognito-login.css relstylesheet        mediascreen />        title>Signin/title>    script srcnull/null/js/amazon-cognito-advanced-security-data.min.js >/script>    script>    function getAdvancedSecurityData(formReference) {        if (typeof AmazonCognitoAdvancedSecurityData  undefined) {            return true;        }        // UserpoolId is not available on frontend for springboard. We do not use userPoolId        // anyway other than put in context data.         var userPoolId  ;        var clientId  getUrlParameter(client_id);        var username  ;        var usernameInput  document.getElementsByName(username)0;        if (usernameInput && usernameInput.value) {            username  usernameInput.value;        }        var asfData  AmazonCognitoAdvancedSecurityData.getData(username, userPoolId, clientId);        if (typeof asfData  undefined) {            return true;        }        if (formReference && formReference.cognitoAsfData) {            formReference.cognitoAsfData.value  asfData        }        return true;    }    function getUrlParameter(name) {        name  name.replace(//, \).replace(//, \);        var regex  new RegExp(\?& + name + (^&#*));        var results  regex.exec(location.search);        return results  null ?  : decodeURIComponent(results1.replace(/+/g,  ));    }    function onSubmit(evt, formRef) {        formRef.querySelector(buttontypesubmit).disabled  true;        if (!!formRef.submitted) {            evt.preventDefault();            return false;        } else {            formRef.submitted  true;            return getAdvancedSecurityData(formRef);        }    }    function onSubmitLoginForm (formRef) {        formRef.querySelector(inputnamesignInSubmitButton).disabled  true;        getAdvancedSecurityData(formRef)    }/script>    meta nameviewport contentwidthdevice-width, initial-scale1>/head>/head>body spellcheckfalse>    div class

Subdomains

Date	Domain	IP
dev-ss-pool-domain.auth.ap-southeast-2.amazoncognito.com	2025-09-30	52.65.174.38
munip.auth.ap-southeast-2.amazoncognito.com	2025-05-09	54.253.125.142
ndm-mosaic-prod-receipt-monitor.auth.ap-southeast-2.amazoncognito.com	2024-12-26	52.64.119.245
ndm-mosaic-uat-receipt-monitor.auth.ap-southeast-2.amazoncognito.com	2024-11-14	3.105.234.161
ndm-mosaic-sit-receipt-monitor.auth.ap-southeast-2.amazoncognito.com	2025-05-19	3.107.126.89

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > ndm-mosaic-uat-receipt-monitor.auth.ap-southeast-2.amazoncognito.com

Is this malicious?

DNS Resolutions

Port 443

Subdomains