IP Intelligence Briefing: 47.128.119.180
Date: 2026-06-10
---
**1. Core Profile**
- Reputation: Moderate Risk (Risk Score: 40)
- Ownership:
- ASN: 16509 | Organization: Amazon Data Services Singapore (AMAZON-SIN)
- Geolocation: Singapore (1.35°N, 103.82°E)
- Network Role: CloudCompute (AWS EC2 instance)
- Threat Indicators:
- No malicious indicators, abuse confidence score not available.
- No known attacker, spam, or Tor exit node activity.
---
**2. Network & Subnet Analysis**
- Subnet: 47.128.119.180/24
- Neighbor Risk:
- Abuse Density: 65.52% (High Abuse Classification)
- Total Siblings: 87 | Active Siblings: 56 | Threat Siblings: 57
- Notable Neighbors:
- 47.128.119.2, 47.128.119.12β15 (Risk Score: 40, Authority Score: 60)
- Subnet Risk Inheritance: 26 points (moderate risk).
---
**3. Observation History**
- Last 30 Days:
- No persistent threat activity or ownership changes.
- Geolocation Validation: ICMP blocked; inferred location matches Singapore (10,382.9 km from probe).
- BGP Analysis: Route stability questionable (isRouteStable: false).
---
**4. Relationships & Dependencies**
- DNS Associations:
- PTR hostname: `ec2-47-128-119-180.ap-southeast-1.compute.amazonaws.com`
- Linked to Amazon AWS infrastructure.
- Network Relationships:
- Same network: AMAZON-SIN (AS16509)
- No external CDN, proxy, or residential ISP ties.
---
**5. Threat & Security Context**
- No Direct Threat: IP is a legitimate AWS EC2 instance with no malicious indicators.
- Subnet Risk: High abuse density in the broader 47.128.119.0/24 subnet suggests potential for malicious activity in the vicinity.
- Recommendations:
- Monitor the 47.128.119.0/24 subnet for unusual traffic patterns.
- Consider blocking the subnet if it contains compromised neighbors.
- Validate AWS instance security posture via AWS console (e.g., IAM roles, security groups).
---
Conclusion:
This IP is part of Amazonβs cloud infrastructure and appears benign. However, the high abuse density in its subnet warrants closer monitoring. SOC teams should investigate potential lateral movement or compromised neighbors within the 47.128.119.0/24 range.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Singapore |
| ASN | AS16509 |
| Network Name | AMAZON-SIN |
| CIDR Block | 47.128.0.0/14 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-47-128-119-180.ap-southeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-47-128-119-180.ap-southeast-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 17% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 06:42:22 UTC |
| Last Seen | 2026-06-29 01:22:35 UTC |
| Profile Built | 2026-06-29 01:32:23 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.