# IP INTELLIGENCE BRIEFING
## Target: 172.178.119.118/32
Classification: LOW RISK / INFRASTRUCTURE
Analysis Date: Current
Provider: Microsoft Azure (ASN 8075)
---
EXECUTIVE SUMMARY
IP address 172.178.119.118 is identified as Microsoft Azure cloud infrastructure located in Virginia, US. The endpoint presents a LOW RISK profile (Risk Score: 25) with no active threat indicators. No malicious activity, known campaigns, or blacklisting detected. Recommended monitoring only; no immediate blocking action warranted.
---
PROFILE DETAILS
| Attribute | Value |
|---|---|
| **Risk Score** | 25 (Low Risk) |
| **Provider** | Microsoft Azure (ASN 8075) |
| **Infrastructure Type** | CloudCompute / Hosting |
| **Geolocation** | Virginia, US (Lat: 37.37, Lon: -79.46) |
| **CIDR Block** | 172.178.0.0/16 |
| **Registration** | ARIN (Divya Quamara) |
| **DNSSEC** | Valid |
| **Open Ports** | None detected |
| **Services** | Firewalled / No Services |
---
THREAT ASSESSMENT
Threat Indicators: None detected
- No known attacker activity
- Not a spam source
- Not a Tor exit node
- Zero blacklist entries
- No known campaigns associated
Control Plane:
- Operator Score: 0.1304 (Minimal)
- Route Stability: Unstable
- DNSBL Listed: 1/8 total lists
- RPKI State: Not reported
---
NETWORK NEIGHBORHOOD ANALYSIS
Subnet: 172.178.119.118/24
- Abuse Density: 0.6 (Moderate)
- Classification: Mostly Clean
- Total Siblings: 5
- Active Siblings: 3
- Threat Siblings: 3
Adjacent IPs Risk Profile:
| IP Address | Risk Score | Authority Score |
|---|---|---|
| 172.178.119.19 | 25 | 50 |
| 172.178.119.21 | 25 | 50 |
| 172.178.119.26 | 25 | 50 |
| 172.178.119.119 | 25 | 50 |
*Note: All adjacent IPs maintain consistent low-risk profiles consistent with cloud infrastructure.*
---
OBSERVATION HISTORY
Total Observations: 15 signals recorded
Most Recent: 2026-06-16 21:38:48 UTC
Temporal Trends:
- No ownership changes detected
- No persistent malicious behavior
- Threat observation count: 0
- Stability Label: Not applicable
Historical Signals Include:
- Geolocation inference (Virginia, US)
- Ownership attribution (Microsoft Azure)
- Subnet classification (mostly_clean)
- Network scanning activity
---
RELATIONSHIP GRAPH
Detected Relationships: 4
- Type: Same Network (cloud infrastructure)
- Target Values: Multiple "cloud" network associations
---
SECURITY ACTIONS & RECOMMENDATIONS
Risk-Based Action: MONITOR
Recommended Actions: None required
Firewall Rules: None generated (Risk Score 25 below action threshold)
Additional Considerations:
- IP is part of Microsoft Azure cloud infrastructure
- No open ports or services exposed
- DNSSEC validated
- Low-risk classification maintained
---
ANALYST NOTES
172.178.119.118 is a legitimate Microsoft Azure endpoint with no threat indicators. The moderate subnet abuse density (0.6) and presence of 3 threat siblings in the /24 neighborhood warrant contextual awareness but do not alter the low-risk classification of this specific IP. Traffic patterns consistent with cloud compute infrastructure. No immediate security action required; maintain baseline monitoring.
Status: CLEAR FOR ROUTING
Priority: LOW
Action: Monitor Only
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | cloud |
| CIDR Block | 172.178.0.0/16 |
| RIR | ARIN |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 2 |
| routing | 17% | 1 | 1 |
| services | 24% | 2 | 2 |
| ownership | 35% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 17% | 1 | 1 |
| Overall | 22% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-14 08:02:06 UTC |
| Last Seen | 2026-06-25 07:54:39 UTC |
| Profile Built | 2026-06-21 21:50:08 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 18 |
Full dossier details are available via our API.