IP Intelligence Briefing: 20.197.232.217
Date: June 10, 2026
---
**1. Core Profile**
- Risk Assessment:
- Overall Risk: Moderate (65/100)
- Provider: Microsoft Corporation (ASN 8075)
- Network Role: Cloud compute infrastructure (Microsoft Azure)
- Geolocation: Brazil (São Paulo, Campinas), latitude -22.9035, longitude -47.0565
- Threat Indicators: No malicious activity detected (no spam, attacks, or known campaigns).
---
**2. Network Behavior**
- Services:
- No open ports or TLS services detected in recent scans.
- No HTTP server banners or TLS certificates observed.
- Cloud Infrastructure:
- Part of Microsoft Azure's 20.192.0.0/10 prefix.
- Likely a virtual machine or cloud-hosted service.
- Routing:
- BGP prefix: 20.192.0.0/10 (Microsoft-owned).
- Route stability: Unstable (recent route changes).
---
**3. Historical Observations**
- Recent Activity (June 10, 2026):
- Geolocation confirmed as Brazil (São Paulo).
- Low-confidence TLS scan detected (no actionable data).
- No persistent malicious activity or threat persistence.
- Trend: No significant changes in risk or behavior observed.
---
**4. Relationships & Neighbors**
- Linked Entities:
- Subnet: 20.197.232.217/24 (Microsoft-owned).
- No external hostnames, domains, or certificates associated.
- Neighborhood:
- Subnet abuse density: 0% (clean).
- No neighboring IPs reported (likely a /24 with no active hosts or limited data).
---
**5. Recommendations**
- Monitoring: Track for unexpected service activation or geolocation shifts.
- Firewall: No immediate action required; IP is legitimate Microsoft infrastructure.
- Context: Cloud-hosted services may require additional scrutiny for misconfigurations.
Conclusion: This IP is a Microsoft Azure server in Brazil with no malicious indicators. Moderate risk due to cloud infrastructure exposure but no active threats detected. No action required unless new anomalies emerge.
---
*Generated via IPDebrief intelligence tools. All data reflects observations as of June 10, 2026.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | MSFT |
| CIDR Block | 20.192.0.0/10 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | dd1085ed-490d-4171-93c6-1320dd8bbec1.brs.ml.azure.com |
| Valid From | 2026-06-10T20:06:19+00:00 |
| Valid Until | 2026-12-06T02:06:19+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 178 days |
| Serial Number | 71790AE8237E565F1D25B6AD4A9FEACE |
| Thumbprint | 2D1B0317DF796DDE22219E8BF82600C666CEA938 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 32% | 1 | 3 |
| geolocation | 26% | 2 | 2 |
| Overall | 26% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 12:42:12 UTC |
| Last Seen | 2026-06-29 01:37:25 UTC |
| Profile Built | 2026-06-29 07:41:40 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.