47.128.112.34
IP Intelligence Briefing: 47.128.112.34
Date: 2026-06-13
---
**Core Profile**
- Reputation: Moderate Risk (Risk Score: 40)
- Ownership: Amazon Data Services Singapore (ASN: 16509, Netname: AMAZON-SIN)
- Geolocation: Singapore (1.35°N, 103.82°E), inferred via multi-signal geolocation.
- Network Role: AWS EC2 instance (cloud compute, firewalled, no public services).
- Threat Indicators: No malicious indicators, blacklists, or campaigns linked.
---
**Observation History**
- Recent Activity (2026-06-12 to 2026-06-13):
- Subnet abuse density: 0.71 (high abuse classification).
- No persistent malicious behavior or threat persistence.
- DNS resolution confirmed for `ec2-47-128-112-34.ap-southeast-1.compute.amazonaws.com`.
---
**Relationships**
- Network Links:
- Directly tied to AWS infrastructure (AMAZON-SIN).
- DNS hostname: `ec2-47-128-112-34.ap-southeast-1.compute.amazonaws.com`.
- No External Threat Associations: No linked malicious domains, certificates, or campaigns.
---
**Subnet Analysis**
- Subnet: 47.128.112.34/24
- Abuse Density: 71% (high abuse classification).
- Neighbor Risk: 96 IPs in subnet flagged as medium/low risk; 3 high-risk siblings.
- Inherited Risk: 28 (moderate risk from subnet context).
---
**Actionable Intelligence**
- SOC Recommendations:
1. Monitor Subnet Activity: High abuse density in the subnet (47.128.112.0/24) suggests potential lateral movement or shared infrastructure risks.
2. Verify EC2 Instance: Confirm legitimacy of the AWS EC2 instance via AWS console or security groups.
3. Enhance Subnet Segmentation: Isolate critical workloads from high-risk subnets to mitigate potential exposure.
4. Check DNS Resolutions: Validate DNS records for `ec2-47-128-112-34.ap-southeast-1.compute.amazonaws.com` for anomalies.
- Firewall Rules (Example):
- Block all traffic from `47.128.112.0/24` unless explicitly allowed for AWS cloud services.
- Apply strict egress rules to AWS EC2 instances to limit external communication.
---
Conclusion: The IP is a legitimate AWS EC2 instance with no direct malicious activity. However, the associated subnet exhibits high abuse density, warranting closer monitoring for potential indirect threats.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Singapore |
| ASN | AS16509 |
| Network Name | AMAZON-SIN |
| CIDR Block | 47.128.0.0/14 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-47-128-112-34.ap-southeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-47-128-112-34.ap-southeast-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 27% | 2 | 2 |
| Overall | 22% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 12:22:04 UTC |
| Last Seen | 2026-06-21 10:27:10 UTC |
| Profile Built | 2026-06-21 10:31:07 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 23 |
Full dossier details are available via our API.