52.152.97.229 Threat Intelligence and Host Information

Share on:
Jul 03, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 52.152.97.229 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

  • Tags: Nextray, cyber security, ioc, malicious, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: AS8075 microsoft corporation
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: azuregateway-17980030-6590-466d-b5cd-29640a88bdad-177a878e4ab5.vpn.azure.com sbz0vjd21f2fque.southcentralus.atlas-test.cloudapp.azure.com sbzyxa2hjbp2zih.southcentralus.atlas-test.cloudapp.azure.com sbzup9mmqydl6v3.southcentralus.atlas-test.cloudapp.azure.com sbzlgd0co6moixq.southcentralus.atlas-test.cloudapp.azure.com sbzgea0dywbhqzi.southcentralus.atlas-test.cloudapp.azure.com sbzwhumdyjaxqyn.southcentralus.atlas-test.cloudapp.azure.com sbzxbimzi22ftiv.southcentralus.atlas-test.cloudapp.azure.com sbzl5ve9fflbpdm.southcentralus.atlas-test.cloudapp.azure.com sbzuhyn0ddqa3xi.southcentralus.atlas-test.cloudapp.azure.com sbzhjwknwu65oqz.southcentralus.atlas-test.cloudapp.azure.com sbzjncnuv0woqbb.southcentralus.atlas-test.cloudapp.azure.com sbzjq9x8ea5x3m9.southcentralus.atlas-test.cloudapp.azure.com sbz7dojqamqfav4.southcentralus.atlas-test.cloudapp.azure.com sbzwjpmbumynvma.southcentralus.atlas-test.cloudapp.azure.com sbzwkknjcyw17ct.southcentralus.atlas-test.cloudapp.azure.com sbzyvckjz3iba8a.southcentralus.atlas-test.cloudapp.azure.com sbzyolnft5smbja.southcentralus.atlas-test.cloudapp.azure.com sbzmojsy9vva6df.southcentralus.atlas-test.cloudapp.azure.com sbzmrnjbraadna0.southcentralus.atlas-test.cloudapp.azure.com sbz8lkbzroeejo3.southcentralus.atlas-test.cloudapp.azure.com sbzvnykpifoyve3.southcentralus.atlas-test.cloudapp.azure.com sbzic9wdlvykokq.southcentralus.atlas-test.cloudapp.azure.com sbzkgpzys95aqz6.southcentralus.atlas-test.cloudapp.azure.com sbzg4m4khjjiar9.southcentralus.atlas-test.cloudapp.azure.com sbzee60iwbocgen.southcentralus.atlas-test.cloudapp.azure.com bst-ff0988a8-6472-4750-85f5-9e66a090f55b.bastion.azure.com sbzqiv9yznpoadi.southcentralus.atlas-test.cloudapp.azure.com sbzm59d2qgwzjus.southcentralus.atlas-test.cloudapp.azure.com sbz2z2vtensoxi0.southcentralus.atlas-test.cloudapp.azure.com sbzouazjn5ecimr.southcentralus.atlas-test.cloudapp.azure.com sbzsvqduzncydli.southcentralus.atlas-test.cloudapp.azure.com sbzum7exrkgap8f.southcentralus.atlas-test.cloudapp.azure.com sbzmqh5ibvuvfnt.southcentralus.atlas-test.cloudapp.azure.com sbzonn9oqrpe0uv.southcentralus.atlas-test.cloudapp.azure.com sbz9ddu0xwvazth.southcentralus.atlas-test.cloudapp.azure.com sbzjbjuekxds7w8.southcentralus.atlas-test.cloudapp.azure.com sbzznrylpazpfhs.southcentralus.atlas-test.cloudapp.azure.com sbzcy6tojbgv8f3.southcentralus.atlas-test.cloudapp.azure.com sbziudgzkzotciy.southcentralus.atlas-test.cloudapp.azure.com sbzvam9pzpsobw0.southcentralus.atlas-test.cloudapp.azure.com sbzfvrnzxobeu9x.southcentralus.atlas-test.cloudapp.azure.com sbzi8jtvmacvpri.southcentralus.atlas-test.cloudapp.azure.com sbzm6wsiu7ufmks.southcentralus.atlas-test.cloudapp.azure.com sbzfgcyelmajppf.southcentralus.atlas-test.cloudapp.azure.com sbzszu4btqkmksl.southcentralus.atlas-test.cloudapp.azure.com sbz3zsxdaeqqea1.southcentralus.atlas-test.cloudapp.azure.com sbzje6kcaf14qkk.southcentralus.atlas-test.cloudapp.azure.com sbzbcusmvrt7crs.southcentralus.atlas-test.cloudapp.azure.com sbzys7afcfdkh5v.southcentralus.atlas-test.cloudapp.azure.com sbzi3ke9gzycva1.southcentralus.atlas-test.cloudapp.azure.com sbzswbwmwdnhxas.southcentralus.atlas-test.cloudapp.azure.com sbzil2l0cko8nm0.southcentralus.atlas-test.cloudapp.azure.com sbzyk7f4ba4belf.southcentralus.atlas-test.cloudapp.azure.com sbz4cmeqp4f5vqf.southcentralus.atlas-test.cloudapp.azure.com sbzwgksiml7vpgh.southcentralus.atlas-test.cloudapp.azure.com sbzmbzqnmazghwq.southcentralus.atlas-test.cloudapp.azure.com sbzao8kaf3xrdsu.southcentralus.atlas-test.cloudapp.azure.com sbzvinfsky8zkqk.southcentralus.atlas-test.cloudapp.azure.com mysqlrunner-crud-f46119c7.mysql.database.azure.com sbzc24f5bfe6c4e.southcentralus.cloudapp.azure.com

Open Ports Detected

7999

Map

Whois Information

  • NetRange: 52.145.0.0 - 52.191.255.255
  • CIDR: 52.145.0.0/16, 52.160.0.0/11, 52.146.0.0/15, 52.148.0.0/14, 52.152.0.0/13
  • NetName: MSFT
  • NetHandle: NET-52-145-0-0-1
  • Parent: NET52 (NET-52-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Microsoft Corporation (MSFT)
  • RegDate: 2015-11-24
  • Updated: 2021-12-14
  • Ref: https://rdap.arin.net/registry/ip/52.145.0.0
  • OrgName: Microsoft Corporation
  • OrgId: MSFT
  • Address: One Microsoft Way
  • City: Redmond
  • StateProv: WA
  • PostalCode: 98052
  • Country: US
  • RegDate: 1998-07-10
  • Updated: 2023-06-13
  • Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
  • Comment: * https://cert.microsoft.com.
  • Comment:
  • Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
  • Comment: * [email protected].
  • Comment:
  • Comment: To report security vulnerabilities in Microsoft products and services, please contact:
  • Comment: * [email protected].
  • Comment:
  • Comment: For legal and law enforcement-related requests, please contact:
  • Comment: * [email protected]
  • Comment:
  • Comment: For routing, peering or DNS issues, please
  • Comment: contact:
  • Comment: * [email protected]
  • Ref: https://rdap.arin.net/registry/entity/MSFT
  • OrgRoutingHandle: CHATU3-ARIN
  • OrgRoutingName: Chaturmohta, Somesh
  • OrgRoutingPhone: +1-425-516-2387
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
  • OrgTechHandle: SINGH683-ARIN
  • OrgTechName: Singh, Prachi
  • OrgTechPhone: +1-425-707-5601
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
  • OrgTechHandle: MRPD-ARIN
  • OrgTechName: Microsoft Routing, Peering, and DNS
  • OrgTechPhone: +1-425-882-8080
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
  • OrgAbuseHandle: MAC74-ARIN
  • OrgAbuseName: Microsoft Abuse Contact
  • OrgAbusePhone: +1-425-882-8080
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
  • OrgTechHandle: BEDAR6-ARIN
  • OrgTechName: Bedard, Dawn
  • OrgTechPhone: +1-425-538-6637
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
  • OrgTechHandle: IPHOS5-ARIN
  • OrgTechName: IPHostmaster, IPHostmaster
  • OrgTechPhone: +1-425-538-6637
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN

Links to attack logs

bruteforce-ip-list-2020-07-07