IPDebrief

47.128.112.31

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IP Intelligence Briefing: 47.128.112.31/32

Classification: Cloud Infrastructure Asset – Moderate Risk

Date: June 2026

Prepared For: SOC Operations Team

Executive Summary

IP 47.128.112.31 is a cloud compute endpoint hosted within Amazon Web Services Singapore (ASIN: ap-southeast-1). The address demonstrates moderate risk characteristics (score: 40) with no active threat indicators. The IP is part of a high-abuse-density subnet (47.128.112.0/24, abuse density: 0.81), which warrants contextual monitoring despite the target IP's clean profile.

Infrastructure Profile

Threat Assessment

Current Risk Level: Moderate (40/100)

Risk Breakdown:

Neighborhood Context (47.128.112.0/24)

The target IP resides in a high-abuse-density subnet requiring contextual awareness:

Historical Analysis

Network Relationships

Security Recommendations

1. Traffic Analysis: Monitor outbound connections from this EC2 instance for anomalous behavior patterns.

2. Contextual Monitoring: Given the subnet's high abuse density (0.81), flag traffic from 47.128.112.0/24 for enhanced logging.

3. Service Verification: Confirm no unintended services are running; current scan indicates firewalled state.

4. DNS Validation: PTR record correctly resolves to AWS hostname; no spoofing indicators.

5. Whitelist Consideration: AWS infrastructure with no threat indicators may be whitelisted for expected traffic patterns.

Conclusion

IP 47.128.112.31 represents a stable AWS cloud endpoint with moderate risk due to neighborhood context. No active malicious activity observed. The subnet's high abuse density warrants continued monitoring of the /24 block, but this specific IP demonstrates normal cloud infrastructure behavior with no threat indicators requiring immediate action.

---

*Intelligence Source: IPDebrief Platform*

*Data Freshness: Current as of latest observation window*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΈπŸ‡¬ Singapore
RegionSG
CitySingapore
TimezoneAsia/Singapore
Latitude1.35
Longitude103.82

🏒 Ownership & Registration

OrganizationAmazon Data Services Singapore
ASNAS16509
Network NameAMAZON-SIN
CIDR Block47.128.0.0/14
RIRARIN
CountrySingapore
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-47-128-112-31.ap-southeast-1.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-47-128-112-31.ap-southeast-1.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
32%
23
routing
27%
23
services
13%
11
ownership
39%
35
reputation
28%
13
geolocation
19%
22
Overall26%1117
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-02 12:04:22 UTC
Last Seen2026-06-26 18:11:22 UTC
Profile Built2026-06-21 09:02:30 UTC
Data FreshnessLive
Signal Types25
Total Observations29
πŸ” 25 signal types Β· 29 observations collected
This report is generated from 25+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.