104.47.2.33 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.47.2.33 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 60/100

Host and Network Information

• Mitre ATT&CK IDs: T1005 - Data from Local System, T1010 - Application Window Discovery, T1018 - Remote System Discovery, T1027 - Obfuscated Files or Information, T1033 - System Owner/User Discovery, T1036 - Masquerading, T1055 - Process Injection, T1056 - Input Capture, T1057 - Process Discovery, T1070 - Indicator Removal on Host, T1071.004 - DNS, T1071 - Application Layer Protocol, T1082 - System Information Discovery, T1083 - File and Directory Discovery, T1095 - Non-Application Layer Protocol, T1105 - Ingress Tool Transfer, T1106 - Native API, T1114.002 - Remote Email Collection, T1114 - Email Collection, T1129 - Shared Modules, T1140 - Deobfuscate/Decode Files or Information, T1210 - Exploitation of Remote Services, T1213 - Data from Information Repositories, T1218 - Signed Binary Proxy Execution, T1408 - Disguise Root/Jailbreak Indicators, T1421 - System Network Connections Discovery, T1422 - System Network Configuration Discovery, T1427 - Attack PC via USB Connection, T1428 - Exploit Enterprise Resources, T1429 - Capture Audio, T1497 - Virtualization/Sandbox Evasion, T1518 - Software Discovery, T1543 - Create or Modify System Process, T1546 - Event Triggered Execution, T1562 - Impair Defenses, T1569 - System Services, T1573 - Encrypted Channel, TA0011 - Command and Control, TA0030 - Defense Evasion

• Tags: accept, address, admin country, algorithm, all octoseek, android, anti-detection, antivirus, appdata, apple, apple id, appleid, april, as11042, ascii text, attack, august, av scan, awful, baaa, back, black, body length, boolean, bundled, caaa, caca, caca4baaa, cacf, caea, checkbox, ck id, ck matrix, click, close, cobalt strike, code, comcast tmobile, communicating, contact, contacted, contact phone, copy, copy md5, copy sha1, copy sha256, create new, creation date, crimson apple, critical, crypto, csc corporate, cus ou, data, date, dead, debugger evasion, december, desktop, detections type, djvu, d mmmm, dns replication, domain, domain related, domains, domains dropped, domain status, drops, elf wgetboat, entrust, error, et tor, evasive, execution, exit, expiration, facebook, factory, false, file, filehashmd5, filehashsha1, filehashsha256, files, final, first, flag, full name, general, getprocaddress, green, group, hacktool, hashtablemutex, headers, historical ssl, hostname, hr rtd, http response, https://mpegla.com, https://www.virustotal.com/graph/g4dfdf2c6e02b48ebb699b1047eaefe, hybrid, hybrid analysis, iana id, icloud, id, identifier, import, indicator, info, infor, installation, iocs, ipv4, january, jfif standard, jpeg image, june, kb body, key algorithm, key identifier, known tor, l1k validity, llll, lnew york, loader, local, localappdata, love, major, malicious, malware, march, markmonitor, metro, microsoft, misc attack, mitre att, model, mutex, name, name server, name verdict, netlify, netlify edge, network, network ascii text, new york, next, node traffic, no expiration, no relevant, null, number, october, oentrust, open, openurl c, override, path, pattern match, payment, pdf report, pe resource, persistence, phonenumber, png image, postal code, prefetch2, pulse use, qakbot, qbot, quasar, record type, referrer, registrar abuse, registrar url, registrar whois, relayrouter, remote cnc, resolutions, result, runtime process, rust, sample, scan endpoints, script, search, september, server, serving ip, session details, severity, sha1, sha256, show technique span, silly, size, skynet, ssl certificate, status code, stealthyness, subdomains, subject key, suricata alerts, tech email, threat roundup, trim, tsara brashears, ttl value, type data, uaaa, unicode text, united, unknown, unlocker, url, url http, url https, urls url, v3 serial, vt report, waaa, whois record, whois whois, who’s driving, widget, win32 exe, win64, windir, windows nt, writes data to a remote process, x509v3 key, xobo, yaaa, yyyy

• View other sources: Spamhaus VirusTotal

• Country: Ireland
• Network: AS8075 microsoft corporation
• Noticed: 31 times
• Protcols Attacked: SSH
• Countries Attacked: United States of America
• Passive DNS Results: imap.mysrcllc.com cname_html.backmonitorstats.com 616435435.pamx1.hotmail.com edenfamily.com mail.iperfectindia.com d3e31a6479c8634480f5e9caf2fcd2.pamx1.hotmail.com 312dbb73bfc75140a5aa1fdf5172ba.pamx1.hotmail.com 169238932.pamx1.hotmail.com aa1b3f2379f7564a8066caf9d271b1.pamx1.hotmail.com 626d76d391b9f84e8580541fb43ae4.pamx1.hotmail.com 429625291.pamx1.hotmail.com b6246cb9dc4748b224bf327e298ecf.pamx1.hotmail.com bd7c3d2e0b53ef40a01174fbd028ef.pamx1.hotmail.com 169883216.pamx1.hotmail.com 427245182.pamx1.hotmail.com c54aff3eb73744bd11208be1c80d53.pamx1.hotmail.com b7b7504340ef4083e24333454fef86.pamx1.hotmail.com 7451f48b025f0b8f517120a10a6664.pamx1.hotmail.com 6b3ba9a2750d469372d6ab9ad6483f.pamx1.hotmail.com 101124378.pamx1.hotmail.com 209720211.pamx1.hotmail.com 4eaa3c6dd64741af91910690665401.pamx1.hotmail.com 550462980.pamx1.hotmail.com 1c5e35178056aa478a3f10d8212032.pamx1.hotmail.com cdbeaf38bdf545b99170209c3a8221.pamx1.hotmail.com ba57f0f0df4e46b8398b7ec066ab90.pamx1.hotmail.com c3b9b1a9facd2f9f1e39fd76951ebe.pamx1.hotmail.com 4ebee18ff80722a4fafdc42fa64fb9.pamx1.hotmail.com c9d6b958411d544cbd74aa6d65dcae.pamx1.hotmail.com 1505862723.pamx1.hotmail.com 808283548.pamx1.hotmail.com 0e45c9633e6d41beac6794ecc32906.pamx1.hotmail.com c5ab16f01a7b6545b4d4f67c8fef36.pamx1.hotmail.com mail.scuderia.net.br ad7a721d31714eb78416cfb3dc4e1d.pamx1.hotmail.com b4218ac355da42a5f4da4841bbc4b1.pamx1.hotmail.com 1304952468.pamx1.hotmail.com mailapp.pamx1.hotmail.com pop.amazingkidspeds.com a613c2c6631b4c88bc305209f8853e.pamx1.hotmail.com 4eed63dc6e09fb4d938052ff84e012.pamx1.hotmail.com ba4e4a90b1044f8ce1ed2ec2d9bfb2.pamx1.hotmail.com 180125214.pamx1.hotmail.com 186533078.pamx1.hotmail.com 8399a4113e014cb90e251636d3b2a8.pamx1.hotmail.com tw.pamx1.hotmail.com 51173470.pamx1.hotmail.com 153601069.pamx1.hotmail.com 757b7f6f78b749b1452a717a0e7bd0.pamx1.hotmail.com tiger.pamx1.hotmail.com 695813040be042a4ffd3a15ec996fd.pamx1.hotmail.com fff78aea74e3d24ea016aa066a25ef.pamx1.hotmail.com eml.pamx1.hotmail.com b2dd172d9b3d4abbf04e85a5c90666.pamx1.hotmail.com e465a45e6f80458c2301d93ed45053.pamx1.hotmail.com c00da0b0628b469e7c2aacb1f022d8.pamx1.hotmail.com 0a6b3377f349d5459dd827faa87ed5.pamx1.hotmail.com 5eec5659c07c5d409f3874997f5b0e.pamx1.hotmail.com mail6.pamx1.hotmail.com 2db3320273ca0d47847c4ff46747dd.pamx1.hotmail.com 7f3906d768d146b4bc7a2734837330.pamx1.hotmail.com 6087b59c69625199811c614b8bbd5e.pamx1.hotmail.com com.pamx1.hotmail.com 84bec7aa9577ed462bec156eaba966.pamx1.hotmail.com d1689dc4d4ceae4386cddfcf35bb8a.pamx1.hotmail.com 7a8e5c88213f2c47b7547f68aea650.pamx1.hotmail.com 3ed34e20162aa04683ef0384a958e8.pamx1.hotmail.com 5e8bd06b33178844bb1c9b01e6bfa8.pamx1.hotmail.com zimbra.pamx1.hotmail.com 64b47daefc54a8a89ade354dfb2349.pamx1.hotmail.com 7faa65bf6357ea44a4989e3be41d53.pamx1.hotmail.com 1759499875.pamx1.hotmail.com 546019993.pamx1.hotmail.com hermes.pamx1.hotmail.com 807967713.pamx1.hotmail.com 980906664.pamx1.hotmail.com 96f6227750d40d44a47e221ee9ac59.pamx1.hotmail.com 145ba5fbc98c7546d8030da2745e5b.pamx1.hotmail.com mailserver.pamx1.hotmail.com 7c3b741d447f4ca41a31d643a2d761.pamx1.hotmail.com 787c951b825240983e348ed93aa5ad.pamx1.hotmail.com 29b0f8cb1e8d48b01d38e4d8c53768.pamx1.hotmail.com b3c3b0eada4c46935ead1255cfb3d0.pamx1.hotmail.com cff432a4ae4649bc92cf7481fc2d83.pamx1.hotmail.com ca9e9fe2a3234ab5dcc3126bebaf52.pamx1.hotmail.com ccb8cebdfaeaa1a933dbf34e7815fe.pamx1.hotmail.com 9c230adec1e842ae6e6911d9d66818.pamx1.hotmail.com a1fdbe23a46e499f448e5b5bfa8e83.pamx1.hotmail.com a2354fb180ae5f468de9a3b94971ae.pamx1.hotmail.com 366399507.pamx1.hotmail.com 1598032498.pamx1.hotmail.com 3df4ecf11724714ba5d46334b01ad2.pamx1.hotmail.com msn-com.olc.protection.outlook.com c084ae0fcf7adf46b321520bbe58f9.pamx1.hotmail.com 1950966789.pamx1.hotmail.com 1724013902.pamx1.hotmail.com 1635377353.pamx1.hotmail.com eur.olc.protection.outlook.com a7dd6d5a24b5558de7e238bc9f54c1.pamx1.hotmail.com 555287736.pamx1.hotmail.com 1191659487.pamx1.hotmail.com 3407be7ee4e82eb6c4d548a93d7a60.pamx1.hotmail.com 1928252741.pamx1.hotmail.com 1022563422.pamx1.hotmail.com 1710363584.pamx1.hotmail.com 11fe2be7f27a3cb33c8a582ecad402.pamx1.hotmail.com 8ebe547e31e14b843481debc664cdb.pamx1.hotmail.com 6534714045547096929.pamx1.hotmail.com 1616185175.pamx1.hotmail.com 2010061710.pamx1.hotmail.com 04455f474e8548bb5e48f30c7e0e2b.pamx1.hotmail.com 0dc7e7966fea7244f281290d3229d1.pamx1.hotmail.com cee74464c0a14cb9015521915e407b.pamx1.hotmail.com 448058577.pamx1.hotmail.com 056df969f79f4a4cb6486716117b92.pamx1.hotmail.com 7e4800ad944444a888cc1aeb5162dd.pamx1.hotmail.com ee9ca1d384f04294f9da851298c07f.pamx1.hotmail.com pamx1.hotmail.com c91ba5ab402f8449a284dfba9a0567.pamx1.hotmail.com 9f5f6c77db0244a6bb6750d5dc894e.pamx1.hotmail.com 985ca9e1ab3a5a4a9c3c349a8e2c71.pamx1.hotmail.com ff150407c8880f4286dee418d4de66.pamx1.hotmail.com e1a70e4d5759f7429e724884b646bd.pamx1.hotmail.com 14908363077731452224.pamx1.hotmail.com 739946119.pamx1.hotmail.com 67b6ebaba47f4189e0cc0529ec6702.pamx1.hotmail.com 2a03490006037807825093.pamx1.hotmail.com 1370051802.pamx1.hotmail.com 1200631477.pamx1.hotmail.com 413545768.pamx1.hotmail.com 1717550623.pamx1.hotmail.com c94e2778b50f784d8d5a23cd3ab9d3.pamx1.hotmail.com 979040430.pamx1.hotmail.com 5bd9013f2902409e65249a19df421d.pamx1.hotmail.com 7c9039c715d2524bbcbc7c380472f3.pamx1.hotmail.com 378b3791668c604799d1f9148fd5c1.pamx1.hotmail.com 239265671.pamx1.hotmail.com 1676063590.pamx1.hotmail.com 1672657711.pamx1.hotmail.com 1019631970.pamx1.hotmail.com 1005898890.pamx1.hotmail.com live-com.olc.protection.outlook.com 7958618ed429e3438000eb5d7ad8a2.pamx1.hotmail.com 982722360.pamx1.hotmail.com de4c32aa7439ff88b561652504420d.pamx1.hotmail.com 1656387898.pamx1.hotmail.com 6d3780a1d27c48b362b5568f986f33.pamx1.hotmail.com d5d665273b723142a089f3be374c62.pamx1.hotmail.com outlook-com.olc.protection.outlook.com 1575468042.pamx1.hotmail.com 639049430.pamx1.hotmail.com 582399748.pamx1.hotmail.com 1220982781.pamx1.hotmail.com 1730962715.pamx1.hotmail.com 84f06bb295841c43a0a587412907e7.pamx1.hotmail.com 3a8246ce25c84e97a1789c942fd713.pamx1.hotmail.com 1383259360.pamx1.hotmail.com 1265707040.pamx1.hotmail.com 808336603.pamx1.hotmail.com 1394863656.pamx1.hotmail.com 0ff5bcb11a914ebfa5c2c87ac08a6b.pamx1.hotmail.com 68493809.pamx1.hotmail.com b3adb99a4a0cb3435a0e3320c52838.pamx1.hotmail.com 1705248072.pamx1.hotmail.com 194019900.pamx1.hotmail.com 26d168f1b492664badc55b49720f44.pamx1.hotmail.com 1762492695.pamx1.hotmail.com 1026498883.pamx1.hotmail.com 95261a11dc2c48af945b47d97c5313.pamx1.hotmail.com 1298498d941947a4d9b49437e1be74.pamx1.hotmail.com c85a710c4c159b40bde0fe809fb16b.pamx1.hotmail.com 426468722.pamx1.hotmail.com c4468ac575f640a1c3d1a4ee40c1bd.pamx1.hotmail.com bc9424f4882bf3b19bff46fceab455.pamx1.hotmail.com e3b40f4f1ece40a3e9fb36241afe72.pamx1.hotmail.com 1900833142.pamx1.hotmail.com 1005142903.pamx1.hotmail.com c1d30dacd658cc4b8399047f76a9ec.pamx1.hotmail.com 815820014.pamx1.hotmail.com 1406137395.pamx1.hotmail.com 1496956379.pamx1.hotmail.com 1273906462.pamx1.hotmail.com 646013109513251526.pamx1.hotmail.com 35ad9fbbf470b34284c2808acc6f0f.pamx1.hotmail.com 802086445.pamx1.hotmail.com 8fa71d3b4f451e498bf6440266df85.pamx1.hotmail.com 2059406998.pamx1.hotmail.com 1418844640.pamx1.hotmail.com abc.pamx1.hotmail.com 6f4cddba6d354a841025347f2b4deb.pamx1.hotmail.com 989460530.pamx1.hotmail.com 00e4575abc115c43b0afa9d9005def.pamx1.hotmail.com a69ea18e9329c145bf54c11d2b1c98.pamx1.hotmail.com 924948245.pamx1.hotmail.com 1074776443.pamx1.hotmail.com 474598017.pamx1.hotmail.com 1444179744.pamx1.hotmail.com 1541935879.pamx1.hotmail.com 2024028846.pamx1.hotmail.com 2bdffc7d73e7439c1943e993ddb278.pamx1.hotmail.com 782225533.pamx1.hotmail.com 1469755811.pamx1.hotmail.com 58dff90bdeaf6e46e3b6c6e2f94ab5.pamx1.hotmail.com 1271819724.pamx1.hotmail.com 86d91c269c8644ad2abe6d711a1686.pamx1.hotmail.com bb72080e44b8b592be500c52e7ae75.pamx1.hotmail.com 1992599605.pamx1.hotmail.com 978322949.pamx1.hotmail.com 2034161790.pamx1.hotmail.com 9195f06b0f0b84a175bc632c3b0c80.pamx1.hotmail.com 1451658966.pamx1.hotmail.com 1281218059.pamx1.hotmail.com 2057452400.pamx1.hotmail.com 1043821901.pamx1.hotmail.com 35979954.pamx1.hotmail.com 1180336287.pamx1.hotmail.com 817562211.pamx1.hotmail.com 723327919.pamx1.hotmail.com 1694806815.pamx1.hotmail.com 868706846.pamx1.hotmail.com 843895414.pamx1.hotmail.com 805906683.pamx1.hotmail.com fa4fbdcbc350409c9e9f0644a6a2d1.pamx1.hotmail.com 7200c6ae921718468282068f24bfe9.pamx1.hotmail.com dc28b530f3fa41aaa1df6a3606e663.pamx1.hotmail.com 2bb556157be8d74d55c5df9c8522cc.pamx1.hotmail.com 246620674.pamx1.hotmail.com 1744700735.pamx1.hotmail.com 72be0daa1db642b207dac24787d035.pamx1.hotmail.com 25a62ace08794b9da838f7793d692f.pamx1.hotmail.com 1848408559.pamx1.hotmail.com 14dd6e7963314b84897281e7db5f11.pamx1.hotmail.com 985224454.pamx1.hotmail.com 1346399861.pamx1.hotmail.com 107d7e266fc44ebfe10dc605edcf90.pamx1.hotmail.com 621784241.pamx1.hotmail.com 1421926124.pamx1.hotmail.com 1897459422.pamx1.hotmail.com 422327197.pamx1.hotmail.com 0e9fa5f645fd09abe5a8b8634ae5c8.pamx1.hotmail.com 113029756.pamx1.hotmail.com d55e4f0a30059c40b59f027e8d495d.pamx1.hotmail.com c512a42403b44b43b4421935f79999.pamx1.hotmail.com 1986985507.pamx1.hotmail.com dba467f0b6e5254caa299f749fbd12.pamx1.hotmail.com 363691274.pamx1.hotmail.com 03ee51952f4edd448c967286fb6230.pamx1.hotmail.com aeeff7d7c9e349a59d9d29ffb76eb8.pamx1.hotmail.com 3324633.pamx1.hotmail.com 1591823985.pamx1.hotmail.com 01d48bc274aa4f8b9cc7d17dc0fdf5.pamx1.hotmail.com 760518211.pamx1.hotmail.com 1057946130.pamx1.hotmail.com 1853539956.pamx1.hotmail.com edec739149884f9bf3c6c526c16d4a.pamx1.hotmail.com 959531085.pamx1.hotmail.com hotmail-com.olc.protection.outlook.com 106981564.pamx1.hotmail.com 1718937275.pamx1.hotmail.com 9493450f9638fd4777ea5a9c301b0f.pamx1.hotmail.com 917826618.pamx1.hotmail.com 389639486.pamx1.hotmail.com 427777485.pamx1.hotmail.com 0e302a48fe781f4286c4f948fa5e31.pamx1.hotmail.com 35399c4b71d4479fe105c5041608c0.pamx1.hotmail.com 32aa8d8af09d7e491a4adac38ae70b.pamx1.hotmail.com 3c63d2d9d2021a41afd330d387539f.pamx1.hotmail.com 835252864.pamx1.hotmail.com 70731977.pamx1.hotmail.com 85df119b2e524c8bca1ffda1d37ad3.pamx1.hotmail.com a6018fe724cc374285dedd6fd204d7.pamx1.hotmail.com 620008871.pamx1.hotmail.com 1057226229.pamx1.hotmail.com 2059233422.pamx1.hotmail.com 0193a69a68cd258f6e46d7d58d659e.pamx1.hotmail.com 1766299536.pamx1.hotmail.com 1ecc104ef051aca2463d5bec73b73c.pamx1.hotmail.com 7f72ff2b17e4bc4894e01b9df84d89.pamx1.hotmail.com 0181be7df538a34c9dd92233cb42e1.pamx1.hotmail.com c6053acb578c469d9b201897d22c60.pamx1.hotmail.com 107e601955104c4eab48f3c129bd99.pamx1.hotmail.com 603854396.pamx1.hotmail.com 123889770.pamx1.hotmail.com a5cce037ea78704bb9302878ac513d.pamx1.hotmail.com 759319048.pamx1.hotmail.com 1755226514.pamx1.hotmail.com cc938f63f89548bee4f2420d15f1a2.pamx1.hotmail.com 91cc2025d7f04d9ad1b75d4ab99e16.pamx1.hotmail.com 667225964.pamx1.hotmail.com 1596168034.pamx1.hotmail.com 1984229523.pamx1.hotmail.com 1941601823.pamx1.hotmail.com 1051704436.pamx1.hotmail.com 3ac50076646f45917486d1b3241bcd.pamx1.hotmail.com 998000155.pamx1.hotmail.com 695514399.pamx1.hotmail.com 1c739d39ba0e4c94a9b88082ec4a5f.pamx1.hotmail.com 5b4aef8875a8c184c5add7df53d002.pamx1.hotmail.com

Malware Detected on Host

Count: 264 950aacfd49431fb5c636f91325aae0ba61997a4afd036995e6c67cf5578bd180 a3a9edff2326e1d2d31131558a96873c8305412c8b10179c6763552380cae6a7 639278a958bd4d49dcb566a21d7846267c0a00d866cb05efff5a1bcae5cb133c 6eb6da5998243eee3017c551a4aae10551a6f1ccedfce6914d67e90995b47cba df49ac533dcc8adf6cd2f1039ee3a291a036c6ef7d7551b0a129ea2e64d1aae2 cac6c6d41bed63030216ae4dd5fd9148c750b47bab7244e2593f0b0114148b1c 58a9bee731abc8400940d99b198ec0765ba097b2cad038104dd8772d2cea81e4 9e8e9bc430cd4c0d015a91359434afa8f4bfde303d1c56e894b1a5e3ca5a4e8d 50666c69ee2ce465c85df6df3c94ad5e8ce718e3d1794934d89eed5756b8bf62 0025a9cc09df4e92000ba0633e8fe268475add80438d525d393d53e4db5177c6

Open Ports Detected

25

Map

Whois Information

• NetRange: 104.40.0.0 - 104.47.255.255
• CIDR: 104.40.0.0/13
• NetName: MSFT
• NetHandle: NET-104-40-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Microsoft Corporation (MSFT)
• RegDate: 2014-05-07
• Updated: 2021-12-14
• Ref: https://rdap.arin.net/registry/ip/104.40.0.0
• OrgName: Microsoft Corporation
• OrgId: MSFT
• Address: One Microsoft Way
• City: Redmond
• StateProv: WA
• PostalCode: 98052
• Country: US
• RegDate: 1998-07-10
• Updated: 2023-11-17
• Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
• Comment: * https://cert.microsoft.com.
• Comment:
• Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
• Comment: * abuse@microsoft.com.
• Comment:
• Comment: To report security vulnerabilities in Microsoft products and services, please contact:
• Comment: * secure@microsoft.com.
• Comment:
• Comment: For legal and law enforcement-related requests, please contact:
• Comment: * msndcc@microsoft.com
• Comment:
• Comment: For routing, peering or DNS issues, please
• Comment: contact:
• Comment: * IOC@microsoft.com
• Ref: https://rdap.arin.net/registry/entity/MSFT
• OrgTechHandle: BEDAR6-ARIN
• OrgTechName: Bedard, Dawn
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: dabedard@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
• OrgTechHandle: IPHOS5-ARIN
• OrgTechName: IPHostmaster, IPHostmaster
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: iphostmaster@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
• OrgTechHandle: MRPD-ARIN
• OrgTechName: Microsoft Routing, Peering, and DNS
• OrgTechPhone: +1-425-882-8080
• OrgTechEmail: IOC@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
• OrgTechHandle: SINGH683-ARIN
• OrgTechName: Singh, Prachi
• OrgTechPhone: +1-425-707-5601
• OrgTechEmail: pracsin@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
• OrgAbuseHandle: MAC74-ARIN
• OrgAbuseName: Microsoft Abuse Contact
• OrgAbusePhone: +1-425-882-8080
• OrgAbuseEmail: abuse@microsoft.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
• OrgRoutingHandle: CHATU3-ARIN
• OrgRoutingName: Chaturmohta, Somesh
• OrgRoutingPhone: +1-425-882-8080
• OrgRoutingEmail: someshch@microsoft.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN

Links to attack logs

****** ****** ******