104.46.224.224
IP Intelligence Briefing: 104.46.224.224
Date: 2026-06-09
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (AS 8075, MSFT)
- Geolocation: Osaka, Japan (34.69°N, 135.50°E)
- Network Role: Microsoft Azure cloud infrastructure (firewalled, no public services)
- Threat Indicators: No malicious activity, no blacklist entries, no known attacker associations.
---
**2. Observation History**
- Recent Activity (June 9, 2026):
- Geolocation confirmed in Japan (Osaka) with 0.95 confidence.
- Network classification as Microsoft Azure cloud infrastructure.
- Historical Stability:
- No significant changes in risk signals over the past 30 days.
- Stable BGP routes (no route instability or hijacks).
---
**3. Relationships**
- Linked Entities:
- Subnet: 104.40.0.0/13 (Microsoft-owned).
- No external hostnames, domains, or certificates associated.
- Network Context:
- Part of Microsoft's global cloud infrastructure (no peer-to-peer or CDN associations).
---
**4. Neighborhood Analysis**
- Subnet: 104.46.224.224/24
- Neighbor Risk:
- 0 active IPs in subnet (no siblings or neighbors detected).
- Subnet abuse density: 0% (clean).
---
**5. Recommendations**
- SOC Action:
- Monitor for unexpected traffic patterns or service changes (e.g., open ports, DNS anomalies).
- Verify if the IP is part of Microsoft's legitimate cloud infrastructure (e.g., Azure regions).
- Firewall Rules:
- Allow traffic based on Microsoft's network ranges (AS 8075) if required for business operations.
- No immediate blocking needed due to low risk profile.
---
Conclusion:
104.46.224.224 is a legitimate Microsoft Azure IP with no malicious indicators. It resides in a clean subnet and is part of a stable, trusted network. No actionable threats detected. Continue monitoring for deviations from expected behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | โ |
| CIDR Block | 104.40.0.0/13 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 8443 | https-alt | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080 (3 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | lin.cocorain.cloud |
| Valid From | 2026-06-13T13:29:21+00:00 |
| Valid Until | 2026-09-11T13:29:20+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 052818AF17109FB8B798079997638B8F5A59 |
| Thumbprint | 8057F74020B947F6C36D6736D084F3CD012E9229 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 17% | 2 | 3 |
| services | 30% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 27% | 11 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-20 05:43:09 UTC |
| Last Seen | 2026-06-28 10:46:04 UTC |
| Profile Built | 2026-06-29 04:51:01 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 26 |
Full dossier details are available via our API.