172.174.223.97
# INTELLIGENCE BRIEFING: 172.174.223.97/32
## EXECUTIVE SUMMARY
IP address 172.174.223.97 is classified as LOW RISK (Risk Score: 25) with no active threat indicators. The address is associated with Microsoft Azure cloud infrastructure (AS8075) in Virginia, USA, and demonstrates stable ownership characteristics. No immediate blocking or investigation actions recommended.
---
## NETWORK OWNERSHIP & CLASSIFICATION
| Field | Value |
|---|---|
| **Organization** | Divya Quamara |
| **ASN** | 8075 (Microsoft Azure) |
| **CIDR Block** | 172.174.0.0/16 |
| **Infrastructure Type** | CloudCompute / Hosting |
| **Network Role** | Cloud Infrastructure |
| **Provider** | Microsoft Azure |
---
## GEOLOCATION DATA
| Field | Value |
|---|---|
| **Country** | United States (US) |
| **Region** | Virginia |
| **Coordinates** | 37.37°N, -79.46°W |
| **Timezone** | America/New_York |
| **Geo Validation** | Consensus confirmed (1 source) |
| **ICMP Validation** | Blocked - unable to validate |
---
## THREAT ASSESSMENT
| Indicator | Status |
|---|---|
| **Risk Score** | 25 / 100 |
| **Abuse Confidence** | Not applicable |
| **Tor Exit Node** | No |
| **Known Attacker** | No |
| **Spam Source** | No |
| **Blacklist Count** | 0 |
| **Known Campaigns** | None |
| **Threat Persistence** | 0 days |
Control Plane Analysis:
- DNSBL Listed: 1 of 8 lists
- Route Stability: Stable
- BGP Prefix: 172.160.0.0/11
- MoAS: No
- RPKI/Irr Consistency: Not assessed
---
## NETWORK SERVICES & DNS
| Service | Status |
|---|---|
| **Open Ports** | None detected |
| **DNS Resolution** | No forward resolution |
| **Hosted Domains** | 0 |
| **TLS Certificate** | None |
| **HTTP Title** | None |
| **Email Auth (SPF/DMARC)** | Not configured |
---
## NEIGHBORHOOD ANALYSIS
Subnet: 172.174.223.0/24
- Abuse Density: 0 (Clean)
- Classification: Clean
- Total Siblings: 1
- Threat Siblings: 0
Neighbor Summary:
- 172.174.223.246: Risk Score 0 (Low Risk)
---
## OBSERVATION HISTORY
Total Observations: 19
Most Recent: 2026-06-16 13:59:44 UTC
Key Historical Signals:
- Scan Activity: Multiple port scans detected (last observed: 2026-06-16)
- Geolocation: Consistent Virginia-based location
- Ownership: Stable (no transfers in last 3 years; 1 transfer recorded in 2022)
- Threat Persistence: 0 days (no persistent malicious behavior)
---
## RELATIONSHIP GRAPH
- 8 Relationships Identified
- All Type: Same Network (Cloud)
- Targets: Multiple "cloud" network associations
---
## RECOMMENDED ACTIONS
Immediate Actions: [None Required]
- IP exhibits standard cloud infrastructure behavior
- No threat indicators warrant defensive measures
- Monitoring recommended for baseline establishment
Firewall/Blocking Rules: [Not Recommended]
- No actionable rules generated based on risk profile
- IP classified as low-risk Microsoft Azure infrastructure
---
## ASSESSMENT NOTES
This IP address represents legitimate Microsoft Azure cloud hosting infrastructure. The low risk score (25) and absence of threat indicators, combined with clean neighborhood data and stable ownership history, indicate normal cloud service operation. The single DNSBL listing appears to be a false positive or non-critical listing given the overall clean profile. No defensive actions recommended at this time.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | cloud |
| CIDR Block | 172.174.0.0/16 |
| RIR | ARIN |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 2 |
| routing | 27% | 2 | 3 |
| services | 21% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 15% | 1 | 2 |
| geolocation | 30% | 2 | 3 |
| Overall | 24% | 11 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-07 01:46:05 UTC |
| Last Seen | 2026-06-21 13:31:46 UTC |
| Profile Built | 2026-06-21 13:41:16 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 23 |
Full dossier details are available via our API.