13.107.137.11
# IP INTELLIGENCE BRIEFING: 13.107.137.11/32
Classification: LOW RISK
Date: 2026-06-26
Analyst: IPDebrief Intelligence Team
---
## EXECUTIVE SUMMARY
IP address 13.107.137.11 is identified as Microsoft Corporation cloud infrastructure within the Microsoft Azure network. The IP presents a LOW RISK profile (risk score: 25/100) with no active threat indicators. The address is part of a clean subnet (13.107.137.0/24) with zero abuse density and no neighboring threat activity.
---
## OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| Organization | Microsoft Corporation |
| ASN | 8068 |
| Country | United States (WA) |
| City | Redmond |
| Infrastructure Type | CloudCompute |
| Network Role | Web Server / Hosting |
| ASN Classification | Microsoft Azure |
---
## THREAT ASSESSMENT
Current Risk Score: 25 (LOW)
Threat Indicators:
- No blacklist entries (0/0)
- Not a Tor exit node
- Not a known attacker
- Not a spam source
- No active campaigns detected
- No correlated malicious IPs
DNSBL Status: 1 listing out of 8 total lists (requires context)
---
## NETWORK CHARACTERISTICS
Services:
- Port 80/tcp: HTTP
- Port 443/tcp: HTTPS
TLS Certificate:
- Issuer: Microsoft TLS G2 RSA CA OCSP 02, Microsoft Corporation
- Subject: *.azureedge.net
- Self-signed: No
Control Plane:
- Origin ASN: 8068
- BGP Prefix: 13.107.137.0/24
- RPKI State: Unknown
- IRR Consistency: Match
- Route Stability: Stable
---
## NEIGHBORHOOD ANALYSIS
Subnet: 13.107.137.0/24
| Metric | Value |
|---|---|
| Abuse Density | 0 (Clean) |
| Total Siblings | 1 |
| Active Siblings | 1 |
| Threat Siblings | 0 |
Risk Distribution: No high-risk or medium-risk neighbors detected.
---
## OBSERVATION HISTORY
Total Observations: 34 signals
Key Historical Signals:
- 2026-06-26: Confirmed Microsoft Azure cloud infrastructure (confidence: 0.90)
- 2026-06-19: HTTP response status code 400 observed (confidence: 0.80)
- 2026-06-19: Subnet classification remained "clean" (confidence: 0.40)
Temporal Analysis: No persistent malicious activity detected. Threat observation count: 1. Ownership has remained stable with no changes recorded.
---
## RELATIONSHIP GRAPH
Total Relationships: 36
Network Associations: 36 "Same Network" relationships pointing to Microsoft (MSFT) infrastructure. Indicates consistent Microsoft Azure network allocation.
---
## GEOLOCATION VALIDATION
Validation Status: β οΈ ANOMALY DETECTED
- GeoPlausible: False
- RTT Violation: Observed 25ms vs minimum 157.4ms required for 7,870km distance
- Data Sources: 2 geo sources with consensus
- RIR Registry: ARIN
- Delegation Age: 10,640 days
*Note: Geolocation validation shows discrepancies typical of anycast cloud infrastructure deployments.*
---
## SECURITY RECOMMENDATIONS
Action Level: LOW (No immediate action required)
Recommended Actions: None
- Risk score of 25 does not warrant blocking
- IP classified as legitimate Microsoft Azure infrastructure
- Standard allow policies for Microsoft Azure traffic recommended
Firewall Rules: Not generated (low risk profile)
---
## INTELLIGENCE NARRATIVE
The IP address 13.107.137.11 operates as legitimate Microsoft Azure cloud infrastructure. Historical analysis confirms consistent cloud hosting behavior with no escalation in risk profile over time. The subnet exhibits clean classification with no abuse activity. The single DNSBL listing requires contextual review but does not indicate active malicious use.
Recommended SOC Action: Monitor for behavioral changes. Standard allow policies for Microsoft Azure traffic may apply. No threat intelligence indicators suggest blocking is warranted.
---
Report Generated: IPDebrief Intelligence Platform
Data Sources: 20+ threat feeds, network scanning, BGP routing data
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8068 |
| Network Name | β |
| CIDR Block | 13.107.137.0/24 |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | *.azureedge.net |
| Valid From | 2026-04-29T14:37:00+00:00 |
| Valid Until | 2026-10-26T14:37:00+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha384RSA |
| Validity Period | 180 days |
| Serial Number | 41001EC69FE4DF6599BEB07B930000001EC69F |
| Thumbprint | 7A8322861B02345E8C0C0EF46CF1EFAD72A0EBBC |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 20% | 2 | 4 |
| routing | 24% | 4 | 5 |
| services | 25% | 2 | 3 |
| ownership | 22% | 3 | 4 |
| reputation | 24% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 23% | 14 | 22 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-11 02:30:54 UTC |
| Last Seen | 2026-06-27 18:43:10 UTC |
| Profile Built | 2026-06-28 12:49:39 UTC |
| Data Freshness | Live |
| Signal Types | 33 |
| Total Observations | 37 |
Full dossier details are available via our API.