20.91.247.231
IP Intelligence Briefing: 20.91.247.231
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: Stockholm, Sweden (59.33°N, 18.07°E)
- Network Role: Microsoft Azure CloudCompute (Hosting/Infrastructure)
- Threat Status: No malicious indicators, no blacklist entries, no campaigns linked.
---
**2. Observation History (Last 30 Days)**
- Consistent Behavior:
- Identified as Microsoft Azure infrastructure (CloudCompute) across all observations.
- DNSSEC validation attempted but blocked by ICMP restrictions (no active resolution).
- No changes in risk score or network classification.
- Key Flags:
- ICMP Blockage: Traceroute validation failed due to ICMP blocking, limiting geo-verification accuracy.
- Stability: Subnet (20.91.247.0/24) has 0 active neighbors, suggesting isolated infrastructure.
---
**3. Relationships**
- Linked Entities:
- Repeatedly associated with MSFT (Microsoft) across all relationship signals.
- No external organizations, domains, or certificates linked.
- Network Context:
- Part of Microsoftβs Azure backbone (20.64.0.0/10 BGP prefix).
- No peer relationships or CDN/proxy associations.
---
**4. Neighborhood Analysis**
- Subnet: 20.91.247.0/24
- Neighbor Density:
- 0 active neighbors detected.
- Subnet labeled "mostly_clean" with no abuse activity.
- Risk Inheritance: Minimal inherited risk from subnet (abuse density: 0).
---
**5. Recommendations**
- Monitor: Track for unexpected changes in network role or threat signals, though current risk profile is low.
- Verify: Confirm ICMP blocking is intentional (e.g., internal Azure segmentation) to avoid false positives.
- No Action Required: No malicious activity detected; IP aligns with Microsoftβs infrastructure.
---
Source: IPDebrief Threat Intelligence Platform
Note: This IP is part of Microsoftβs public cloud infrastructure. No further investigation is warranted unless behavior deviates from established patterns.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | 20.64.0.0/10 |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 28% | 2 | 4 |
| routing | 30% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 25% | 11 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:08 UTC |
| Last Seen | 2026-06-27 03:58:04 UTC |
| Profile Built | 2026-06-27 22:04:09 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 26 |
Full dossier details are available via our API.