104.248.35.8
# IP Intelligence Briefing: 104.248.35.8/32
Date: 2026-06-21
Classification: LOW RISK
Risk Score: 25/100
---
## Executive Summary
IP address 104.248.35.8 is a DigitalOcean cloud computing resource located in Frankfurt am Main, Germany. The IP presents as a firewalled/cloud infrastructure endpoint with no active service exposure. Current threat indicators are minimal, and the subnet classification is "mostly_clean" with low abuse density. No immediate blocking is recommended based on current data.
---
## Infrastructure Profile
| Attribute | Value |
|---|---|
| **IP Address** | 104.248.35.8/32 |
| **ASN** | 14061 (DigitalOcean, LLC) |
| **Organization** | DIGITALOCEAN-104-248-0-0 |
| **Location** | Frankfurt am Main, Germany (DE) |
| **Infrastructure Type** | CloudCompute |
| **ISP/Provider** | DigitalOcean |
| **CIDR Block** | 104.248.0.0/16 |
---
## Risk Assessment
Overall Risk: LOW (Score: 25/100)
Risk Breakdown:
- Reputation Score: 25 (Low Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
Threat Indicators:
- Blacklist Count: 0
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- Known Campaigns: None detected
- Abuse Confidence Score: Not applicable
---
## Network Characteristics
Service Exposure:
- Open Ports: None detected
- TLS Certificate: Not present
- HTTP Banner: None
- Service Purpose: Firewalled / No Services
DNS Analysis:
- PTR Hostnames: None
- Forward Resolution: Not confirmed
- Hosted Domains: None
- Email Authentication (SPF/DMARC): Not configured
---
## Control Plane Intelligence
| Metric | Value |
|---|---|
| BGP Prefix | 104.248.32.0/20 |
| Route Stability | False |
| DNSBL Lists | 1 of 8 |
| Operator Score | 0.1304 (Minimal) |
| RPKI State | Not available |
| IRR Consistency | Not available |
---
## Neighborhood Analysis
Subnet: 104.248.35.8/24
Abuse Density: 1 (Low)
Classification: mostly_clean
Inherited Risk: 2
Total Siblings: 1
Active Siblings: 0
Threat Siblings: 1
*Note: One threat sibling detected in the /24 subnet.*
---
## Behavioral History
Observation Count: 16 signals recorded
Last Observed: 2026-06-21T03:28:32+00:00
Threat Persistence: 0 days
Persistent Malicious: No
Recent Signal Types:
- Cloud infrastructure classification confirmed
- Operator score assessed as "Minimal"
- Subnet abuse density tracked at low levels
- Ownership changes: 0 (stable registration)
---
## Related Entities
Network Relationships:
- Same Network: DIGITALOCEAN-104-248-0-0 (16 relationship entries)
*No external hostname, organization, or certificate relationships detected.*
---
## Recommended Actions
Security Actions: No specific actions recommended at this time.
Firewall Rules: Not applicable (low risk profile).
Monitoring Priority: LOW
---
## Analyst Notes
1. Infrastructure Type: This IP is a DigitalOcean cloud resource, commonly used for web hosting, development, or enterprise infrastructure.
2. Service State: No open services detected on the IP. The "Firewalled / No Services" classification suggests either a dormant resource or one behind strict access controls.
3. Geolocation: Frankfurt location is consistent with DigitalOcean's European data center footprint.
4. Threat Posture: Minimal threat activity. The single threat sibling in the neighborhood warrants continued monitoring but does not indicate immediate risk from this specific IP.
5. Recommendation: Standard monitoring procedures apply. No immediate blocking, rate limiting, or investigation required based on current data.
---
Report Generated: IPDebrief Intelligence Platform
Data Freshness: Current as of analysis timestamp
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-104-248-0-0 |
| CIDR Block | 104.248.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
๐ TLS Certificate
| SANs | admvpn.top |
| Valid From | 2026-06-21T06:04:31+00:00 |
| Valid Until | 2026-09-19T06:04:30+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 0520A822D164FA87E75FBC40E59EE795F88F |
| Thumbprint | 29242E11B6B2940445484EECE57F50F970A3ECA5 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 30% | 2 | 4 |
| Overall | 22% | 9 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-28 18:33:52 UTC |
| Last Seen | 2026-06-29 05:36:39 UTC |
| Profile Built | 2026-06-29 06:02:08 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 20 |
Full dossier details are available via our API.