IPDebrief

47.128.122.105

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 47.128.122.105

Date: 2026-06-12

---

**1. Core Profile**

- ASN: 16509

- Organization: Amazon Data Services Singapore (AMAZON-SIN)

- Geolocation: Singapore (City: Singapore, Latitude: 1.35, Longitude: 103.82)

- Provider: Amazon Web Services (AWS)

- Type: CloudCompute (Firewalled / No Services)

- Subnet: 47.128.0.0/14

---

**2. Threat & Abuse Indicators**

- Abuse Density: 55.26% (high abuse classification)

- Neighbor Analysis:

- Total Siblings: 38 IPs in 47.128.122.0/24

- Active Threat Siblings: 21 IPs (risk scores range: 0–50)

- Notable Neighbors:

- 47.128.122.100 (Risk: 40), 47.128.122.118 (Risk: 40), 47.128.122.122 (Risk: 50)

---

**3. Historical Observations**

- Route Stability: Unstable (route changes detected in 30 days).

- DNSSEC: Validated.

---

**4. Relationships & Dependencies**

- Linked to AWS EC2 hostname: `ec2-47-128-122-105.ap-southeast-1.compute.amazonaws.com`.

- Same network as AMAZON-SIN (AWS infrastructure).

- BGP Prefix: 47.128.0.0/14

- RPKI State: Not reported.

- Operator Score: 0.26 (Basic risk rating).

---

**5. Actionable Insights**

- Monitor subnet for unusual traffic patterns due to high abuse density.

- Validate if the AWS instance is authorized (check access logs).

- Investigate high-risk neighbors (e.g., 47.128.122.122) for potential lateral movement or spoofing.

- Consider restricting traffic to/from this subnet if it contains untrusted hosts.

- Ensure AWS security groups and firewall rules are properly configured.

---

Conclusion:

The IP is a legitimate AWS cloud instance, but its subnet exhibits elevated risk due to neighboring IPs. SOC teams should prioritize monitoring the subnet and validating the necessity of the AWS resource. No immediate action is required for the IP itself, but proactive subnet-level analysis is recommended.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΈπŸ‡¬ Singapore
RegionSG
CitySingapore
TimezoneAsia/Singapore
Latitude1.35
Longitude103.82

🏒 Ownership & Registration

OrganizationAmazon Data Services Singapore
ASNAS16509
Network NameAMAZON-SIN
CIDR Block47.128.0.0/14
RIRARIN
CountrySingapore
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-47-128-122-105.ap-southeast-1.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-47-128-122-105.ap-southeast-1.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
27%
23
routing
13%
11
services
13%
11
ownership
27%
23
reputation
22%
13
geolocation
27%
23
Overall22%914
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-01 05:39:14 UTC
Last Seen2026-06-29 09:29:31 UTC
Profile Built2026-06-29 09:47:30 UTC
Data FreshnessLive
Signal Types23
Total Observations23
πŸ” 23 signal types Β· 23 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.