161.118.139.216📋 Copy

IP Intelligence Briefing: 161.118.139.216

Date: 2026-06-10

---

**1. Core Profile**

• Risk Score: 65 (Moderate Risk)
• Ownership: Oracle Corporation (AS31898)
• Geolocation: South Korea (KR), inferred as Seoul.
• Network Role: Oracle Cloud infrastructure (CloudCompute).
• Services: SSH service (OpenSSH 8.2p1) detected.

---

**2. Threat Indicators**

• No direct malicious indicators: No malware, phishing, or exploit activity detected.
• DNSBL Listings: 3/8 DNSBL lists (e.g., Spamhaus, Barracuda) with "high" severity.
• Network Stability: Subnet (161.118.139.0/24) shows 0 abuse density; no neighboring IPs flagged.

---

**3. Historical Observations**

• Recent Activity (2026-06-10):

- DNSBL listings persist (2/8 lists).

- Geolocation inferred as India (20.59°N, 78.96°E) with 1500km accuracy.

- SSH service remains active; no port scanning detected.

• Long-Term Trend: No persistent malicious behavior; risk score stable.

---

**4. Relationships & Network Context**

• Linked Entities:

- Oracle Cloud network (ORACLEV6-AP).

- No connections to known malicious subnets, organizations, or domains.

• Subnet Analysis:

- 161.118.139.0/24 is classified as "clean" with no active threats.

---

**5. Recommendations**

• Monitor DNSBL Listings: Investigate why this IP is listed (e.g., false positives, misconfigurations).
• Validate Geolocation: Confirm if the IP’s inferred location (India) aligns with Oracle’s operations.
• Secure SSH Access: Ensure SSH credentials are protected and restrict access to trusted sources.
• No Immediate Action Required: No evidence of active exploitation or targeting.

---

Conclusion: This IP is associated with Oracle Cloud infrastructure and shows no active malicious behavior. However, its DNSBL listings warrant further investigation to rule out misconfigurations or false positives.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.