IPDebrief

47.128.119.141

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IPDEBRIEF INTELLIGENCE BRIEFING

Target IP: 47.128.119.141/32

Classification: Cloud Infrastructure (AWS Singapore)

Risk Level: LOW (Score: 25/100)

Report Date: 2026-06-27

---

## EXECUTIVE SUMMARY

Target IP 47.128.119.141 is a legitimate Amazon Web Services EC2 instance deployed in the Singapore region (ap-southeast-1). The IP exhibits minimal threat indicators, no malicious campaign associations, and maintains a stable cloud infrastructure classification. The IP does not represent an immediate threat to defensive operations.

---

## INFRASTRUCTURE PROFILE

AttributeValue
**ASN**16509 (Amazon Data Services Singapore)
**Organization**Amazon Web Services
**Geolocation**Singapore, SG (1.35°N, 103.82°E)
**CIDR Block**47.128.0.0/14
**Infrastructure Type**Cloud Compute
**Network Role**Cloud Provider / Hosting
**DNS Resolution**ec2-47-128-119-141.ap-southeast-1.compute.amazonaws.com
**Open Ports**None detected
**TLS Certificate**None

---

## THREAT INDICATOR ASSESSMENT

Current Threat Status: CLEAN

IndicatorFinding
Blacklist Count0
Known AttackerFalse
Tor Exit NodeFalse
Spam SourceFalse
Abuse Confidence ScoreNone
Known CampaignsNone
Threat Observation Count1
Persistently MaliciousFalse

Threat Feed Analysis: No active threat feed indicators. The IP maintains a low-risk reputation across all monitored sources.

---

## NEIGHBORHOOD ANALYSIS

Subnet: 47.128.119.141/24

Total Siblings: 98 IPs

Active Siblings: 75 IPs

Threat Siblings: 48 IPs (48.98% abuse density)

Classification: Mixed

Risk Distribution in /24:

Analysis: The /24 subnet demonstrates elevated abuse density (0.4898) with nearly half the sibling IPs flagged as threats. This pattern is consistent with cloud infrastructure hosting environments where legitimate services coexist with compromised instances. The target IP itself maintains a low-risk score (25) despite neighborhood context.

---

## OBSERVATION HISTORY

Total Observations: 25 signals over monitoring period

Key Historical Signals:

Temporal Analysis: IP demonstrates persistent cloud infrastructure classification with no significant risk escalation. Threat observation count remains low (1), indicating absence of sustained malicious activity.

---

## RELATIONSHIP GRAPH

Total Relationships Identified: 53

Key Associations:

Correlation Analysis: No correlated IPs with known malicious activity. Certificates and hostnames align with legitimate AWS infrastructure patterns.

---

## DEFENSIVE RECOMMENDATIONS

Primary Assessment: No blocking required. IP represents legitimate cloud infrastructure.

Recommended Actions:

1. Allow Traffic: No firewall rules required for this IP.

2. Monitor: Continue standard monitoring of associated AWS region (ap-southeast-1).

3. Contextual Review: If this IP appears in suspicious logs, correlate with other indicators before taking action. The elevated neighborhood abuse density warrants awareness but does not justify blocking the target IP.

Threat Hunting Notes:

---

Analyst Notes: The target IP represents standard cloud infrastructure with no evidence of malicious activity. While the /24 subnet shows elevated abuse density (48 threat siblings), this is characteristic of cloud hosting environments. Maintain contextual awareness but no immediate defensive action is warranted for IP 47.128.119.141.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΈπŸ‡¬ Singapore
RegionSG
CitySingapore
TimezoneAsia/Singapore
Latitude1.35
Longitude103.82

🏒 Ownership & Registration

OrganizationAmazon Data Services Singapore
ASNAS16509
Network Nameβ€”
CIDR Blockβ€”
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-47-128-119-141.ap-southeast-1.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-47-128-119-141.ap-southeast-1.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
28%
24
routing
8%
11
services
15%
22
ownership
17%
23
reputation
27%
13
geolocation
23%
22
Overall20%1015
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-11 08:59:02 UTC
Last Seen2026-06-27 19:20:36 UTC
Profile Built2026-06-28 19:26:36 UTC
Data FreshnessLive
Signal Types22
Total Observations28
πŸ” 22 signal types Β· 28 observations collected
This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.