181.21.155.183
IP Intelligence Briefing: 181.21.155.183
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: Low Risk (0/100)
- Ownership:
- ISP: Telefonica de Argentina (AS22927)
- Network Range: 181.20.0.0/14
- Country: Argentina (LACNIC registry)
- Geolocation:
- Reported Country: United States (NY)
- Actual ISP Location: Argentina (conflict noted; likely geolocation error)
- Network Role: Mobile Carrier infrastructure (no public services or hosting).
---
**2. Threat Observations**
- Historical Signals (Last 30 Days):
- Threat Lists: Listed in 8 sources (high-severity indicators, 85% confidence).
- DNS Records: Valid DNSSEC (no spoofing detected).
- BGP Data: Assigned to AS22927 (Telefonica de Argentina).
- Email Reputation: No SPF/DKIM records detected.
- Current Threat Status: No active malicious indicators (low-risk score).
---
**3. Relationships & Network Context**
- Linked Entities:
- Same network as Telefonica de Argentina (181.20.0.0/14).
- Subnet Analysis:
- /24 Subnet: 181.21.155.0/24 (no active or risky neighbors detected).
- Abuse Density: 0% (clean subnet).
---
**4. Actionable Insights**
- SOC Recommendations:
1. Investigate Threat Lists: Verify if the IPโs inclusion in 8 sources is due to false positives or legitimate compromises.
2. Monitor Geolocation Discrepancy: Confirm if the "US" geolocation is an error, as the ISP is based in Argentina.
3. Check Mobile Carrier Logs: Validate if the IP is part of a legitimate mobile network or a misconfigured device.
4. Track BGP Activity: Monitor for unusual route changes or hijacks in AS22927.
---
Conclusion:
The IP appears to be a legitimate mobile carrier infrastructure asset with no current malicious activity. However, its presence in multiple threat lists warrants further investigation to rule out misconfiguration or compromised devices. No immediate mitigation required, but continuous monitoring is advised.
Tools Used: `ipdebrief_profile`, `ipdebrief_history`, `ipdebrief_relationships`, `ipdebrief_neighbors`.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Telefonica de Argentina |
| ASN | AS22927 |
| Network Name | 181.20.0.0 - 181.23.255.255 |
| CIDR Block | 181.20.0.0/14 |
| RIR | LACNIC |
| Country | AR |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 181-21-155-183.mrse.com.ar |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 181-21-155-183.mrse.com.ar |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 6% | 3 | 4 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-30 06:22:17 UTC |
| Last Seen | 2026-06-12 01:09:27 UTC |
| Profile Built | 2026-06-12 01:19:56 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 20 |
Full dossier details are available via our API.