103.69.85.12
INTELLIGENCE BRIEFING: 103.69.85.12
Classification: Moderate Risk | Date: 2026-06-26
---
OWNERSHIP & INFRASTRUCTURE
- Organization: Vu Anh Tuan (NEWVINA-VN)
- ASN: 150884
- Network Block: 103.69.84.0/23 (APNIC RIR)
- Geolocation: Vietnam (VN)
- Service Status: Firewalled/No services detected
RISK ASSESSMENT
The IP addresses moderate risk profile (score: 40) with a mixed classification. The address appears on 2 of 8 DNS blacklists. Control plane analysis indicates routing instability (isRouteStable: false), suggesting potential network infrastructure changes or peering anomalies.
THREAT INDICATORS
- Not identified as Tor exit node, known attacker, or spam source
- Recent threat indicators detected via AlienVault OTX (confidence: 0.75) on 2026-06-26
- Subnet abuse density: 0.3333 (moderate)
- Neighboring IP analysis reveals 14 siblings with risk distribution: 0 high, 9 medium, 5 low
NETWORK BEHAVIOR
- No open ports or active services detected
- No TLS certificates or HTTP headers observed
- Historical scans indicate network probing activity
- PTR hostname resolution: None
NEIGHBORHOOD ANALYSIS
The /24 subnet (103.69.85.0/24) contains 15 total siblings with 5 identified as threat-siblings. Notable neighbors include:
- 103.69.85.10, 103.69.85.16, 103.69.85.28, 103.69.85.67: Risk score 55 (medium-high)
- 103.69.85.19, 103.69.85.24, 103.69.85.55, 103.69.85.64, 103.69.85.80: Risk score 40
- Multiple IPs at risk score 25 with authority score 50
RECOMMENDED ACTIONS
Firewall blocking rules for 103.69.85.12/32:
```bash
# iptables
iptables -A INPUT -s 103.69.85.12 -j DROP
# nftables
nft add rule inet filter input ip saddr 103.69.85.12 drop
# nginx
deny 103.69.85.12;
# Cloudflare WAF
Expression: ip.src eq 103.69.85.12
Action: BLOCK
# AWS WAF
Addresses: 103.69.85.12/32
```
INTELLIGENCE NOTES
The IP demonstrates persistent activity with 16 historical observations. Recent threat signals correlate with subnet-level abuse patterns. The organization operates within APNIC's Vietnam region with minimal operator score (0.1304). Network stability concerns warrant continued monitoring for routing changes or infrastructure modifications.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Vu Anh Tuan |
| ASN | AS150884 |
| Network Name | NEWVINA-VN |
| CIDR Block | 103.69.84.0/23 |
| RIR | APNIC |
| Country | VN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 35% | 2 | 3 |
| Overall | 22% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-12 15:46:13 UTC |
| Last Seen | 2026-06-26 17:49:26 UTC |
| Profile Built | 2026-06-26 17:56:10 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.