IPDebrief

135.232.220.243

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# INTELLIGENCE BRIEFING: 135.232.220.243/32

Classification: Low Risk / Cloud Infrastructure

Date of Analysis: Current

Prepared For: SOC Operations Team

---

## EXECUTIVE SUMMARY

IP address 135.232.220.243 is a Microsoft Azure cloud compute resource with a low-risk profile (risk score: 25). No active threat indicators or malicious behavior observed. The IP operates within a Microsoft Azure infrastructure block (135.232.0.0/14) and shows no evidence of abuse, malware distribution, or scanning activity.

---

## INFRASTRUCTURE PROFILE

AttributeValue
**Risk Score**25 / 100 (Low Risk)
**ASN**8075 (Microsoft Azure)
**Organization**Divya Quamara
**Network Name**cloud
**Location**Chicago, IL, US (41.88°N, 87.63°W)
**Infrastructure Type**CloudCompute
**CIDR Block**135.232.0.0/16
**RIR**ARIN

---

## THREAT INTELLIGENCE

Active Threat Indicators: None

Indicator TypeStatus
Tor Exit NodeNo
Known AttackerNo
Spam SourceNo
Blacklist Count0
Known CampaignsNone
Threat FeedsNone

DNS/Email Reputation:

---

## NETWORK CONTEXT

Subnet Analysis (135.232.220.0/24):

Neighbor IPs:

IP AddressRisk ScoreAuthority Score
135.232.220.2452550
135.232.220.2462550

---

## OBSERVATION HISTORY (15 RECORDS)

Recent Activity Summary:

Signal Timeline:

---

## NETWORK RELATIONSHIPS

Three relationship records identified, all indicating "Same Network" connections to network resource "cloud" within the Microsoft Azure infrastructure.

---

## SERVICES & EXPOSURE

ServiceStatus
Open PortsNone detected
TLS CertificatesNone
HTTP TitleNone
Server BannerNone
AnycastNo
Mobile CarrierNo
ResidentialNo

---

## RECOMMENDATIONS FOR SOC ANALYSTS

1. Block/Allow Decision: No blocking required. IP poses low risk and appears to be legitimate cloud infrastructure.

2. Monitoring: Continue standard monitoring. No immediate threat indicators present.

3. Context: If this IP appears in traffic logs, it is likely associated with Microsoft Azure cloud services or legitimate cloud-based applications.

4. Investigation Trigger: Investigate only if traffic patterns deviate from expected cloud service behavior.

5. Firewall Rules: No specific firewall rules recommended. Standard cloud traffic policies apply.

---

END OF BRIEFING

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionIL
CityChicago
TimezoneAmerica/Chicago
Latitude41.88
Longitude-87.63

🏒 Ownership & Registration

OrganizationDivya Quamara
ASNAS8075
Network Namecloud
CIDR Block135.232.0.0/16
RIRARIN
CountryUS
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo β€” PTR hostname does not resolve back to this IP (weak signal)

πŸ” DNS Hygiene

Hygiene Score20% (Poor)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
24%
22
routing
17%
11
services
17%
11
ownership
35%
23
reputation
17%
12
geolocation
24%
22
Overall22%911
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-08 01:58:59 UTC
Last Seen2026-06-21 14:20:11 UTC
Profile Built2026-06-21 14:22:51 UTC
Data FreshnessLive
Signal Types16
Total Observations17
πŸ” 16 signal types Β· 17 observations collected
This report is generated from 16+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.