64.236.176.229
# IP Intelligence Briefing: 64.236.176.229
## Executive Summary
IP address 64.236.176.229 is a Microsoft Azure cloud infrastructure endpoint with low-risk characteristics. The IP shows no active threat indicators, no open services, and minimal abuse signals. Recommended classification: Low Risk / Acceptable.
---
## Risk Assessment
- Risk Score: 25 (Low)
- Reputation: Low Risk
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
---
## Ownership and Infrastructure
- AS Number: 8075 (Microsoft Azure)
- Organization: Divya Quamara
- CIDR Block: 64.236.128.0/17
- Network Classification: Cloud Infrastructure
- Geolocation: Chicago, IL, US (41.88°N, -87.63°W)
- Timezone: America/Chicago
---
## Network Role and Services
- Infrastructure Type: CloudCompute
- Provider: Microsoft Azure
- Connection Type: Cloud
- Services: Firewalled / No Services Detected
- Open Ports: None
- TLS Certificate: None
- DNS Resolution: No PTR records, no forward resolution
---
## Threat Indicators
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- Proxy Service: No
- Hosting Service: Yes (Cloud)
- Abuse Confidence Score: Not Available
- Blacklist Count: 0
- Pulsedive Risk: Not Available
- Known Campaigns: None
---
## Control Plane Analysis
- BGP Prefix: 64.236.0.0/16
- Origin ASN: 8075
- RPKI State: Not Available
- IRR Consistency: Not Available
- Route Changes (30d): 0
- Route Stability: False
- DNSBL Listed: 1 out of 8 total lists
---
## Neighborhood Analysis (64.236.176.0/24)
- Abuse Density: 1
- Classification: Mostly Clean
- Inherited Risk: 2
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
- Risk Distribution: No high/medium risk neighbors
---
## Observation History
- Total Observations: 20 signals over 2026-06-16 to 2026-06-21
- Recent Classification: Cloud infrastructure (confidence 0.90)
- Threat Persistence: 0 days
- Ownership Changes: 0
- Is Persistently Malicious: False
Key historical signals include:
- 2026-06-21: Cloud infrastructure confirmed (Microsoft Azure)
- 2026-06-16: Geographic validation attempted (ICMP blocked)
- 2026-06-16: Network neighborhood analysis (mostly clean)
- 2026-06-16: Operator score 0.1304 (Minimal risk)
---
## Email Reputation
- Email Reputation: Not Available
- SPF Record: Not Present
- DMARC Record: Not Present
- Has Score: False
---
## Behavioral Analysis
- Honeypot Hits: 0
- Enumeration Strikes: 0
- WAF Bypass Attempts: Not Detected
- Campaign Matches: 0
- Banner Matches: 0
- Correlated IPs: 0
---
## Recommended Actions
No specific firewall rules or blocking recommendations generated based on current risk profile. The IP is classified as low-risk Microsoft Azure infrastructure.
---
## Intelligence Summary
The IP 64.236.176.229 operates as a legitimate Microsoft Azure cloud endpoint. No malicious activity, threat indicators, or abuse patterns were observed during the intelligence gathering period. The IP demonstrates stable cloud infrastructure behavior with no open services or threat signatures. SOC analysts should classify this IP as acceptable for normal traffic flows but maintain standard monitoring protocols for cloud-based assets.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | cloud |
| CIDR Block | 64.236.128.0/17 |
| RIR | ARIN |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 35% | 2 | 4 |
| Overall | 25% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 00:13:40 UTC |
| Last Seen | 2026-06-21 09:36:32 UTC |
| Profile Built | 2026-06-21 09:39:07 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.