124.248.191.241
IP Intelligence Briefing: 124.248.191.241
Date: 2026-06-11
---
**Risk Assessment**
- Risk Score: 80/100 (High Risk)
- Threat Indicators: No malicious activity detected (no indicators, spam, or known attacker flags).
- Network Role: Firewalled / No Services (no open ports or TLS services).
- Abuse Density: 0% (no malicious neighbors in the subnet).
---
**Ownership & Geolocation**
- Organization: Borak Ban (Cogetel, APNIC)
- Location: Phnom Penh, Cambodia (KH)
- Coordinates: Latitude 11.56, Longitude 104.91
- ASN: 23673 (Cogetel)
---
**Network Configuration**
- Subnet: 124.248.191.0/24 (no active neighbors detected).
- DNS: Associated with `fiber-191-241.online.com.kh` (1 observation).
- Services: No open ports or TLS certificates detected.
---
**Threat & Behavioral Analysis**
- Historical Signals: No persistent threats or ownership changes observed.
- DNSSEC: Validated (no DNSBL listings).
- Routing: Stable BGP prefix (124.248.191.0/24) with no recent route changes.
---
**Recommended Actions**
1. Block the IP:
- Firewall Rules:
- `iptables -A INPUT -s 124.248.191.241 -j DROP`
- `nft add rule inet filter input ip saddr 124.248.191.241 drop`
- Cloudflare/WAF: Block IP with description "IPDebrief risk 80".
- Monitoring: Increase logging verbosity for this IP due to elevated risk score.
2. Verify DNS Associations: Investigate `fiber-191-241.online.com.kh` for potential ties to the IPโs ownership.
3. Subnet Review: Confirm no malicious activity in the broader 124.248.191.0/24 subnet.
---
Note: This IP shows no direct malicious activity but warrants monitoring due to its high risk score and firewalled nature. Ensure alignment with organizational threat response protocols before taking action.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Borak Ban |
| ASN | AS23673 |
| Network Name | Cogetel |
| CIDR Block | 124.248.191.0/24 |
| RIR | APNIC |
| Country | KH |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | fiber-191-241.online.com.kh |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | fiber-191-241.online.com.kh |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 13% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-27 19:21:31 UTC |
| Last Seen | 2026-06-11 15:07:43 UTC |
| Profile Built | 2026-06-11 11:26:50 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 18 |
Full dossier details are available via our API.