IOC Radar
IPMediumSignal 0/100

13.107.136.10

Location
United StatesUnited States
Redmond, Washington
ASN
AS8075
Microsoft Corporation
First Seen
Mar 26, 2025
Last Seen
Jun 1, 2026
Mar 26
First Seen
445d ago
Jun 1
Last Seen
13d ago
4
Reports
source reports
0%
Confidence
medium
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionRedmond, Washington
ASNAS8075
OrganizationMicrosoft Corporation

Feed Intelligence Summary

4 reports0% confidence
4
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched

Activity Timeline

1 total obs
Jun 1Jun 1

Threat Activity Heatmap

· Peak: 2026-06-01
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
4
Reports
First seenMar 26, 2025
Last seenJun 1, 2026
GeolocationUS
CountryUnited States
LocationRedmond, Washington
ASNAS8075
OrgMicrosoft Corporation
Coords47.6711, -122.1253

VirusTotal

Not checked

WHOIS

description
CC=US ASN=AS8068 microsoft corporation
raw
NetRange: 13.64.0.0 - 13.107.255.255 CIDR: 13.104.0.0/14, 13.96.0.0/13, 13.64.0.0/11 NetName: MSFT NetHandle: NET-13-64-0-0-1 Parent: NET13 (NET-13-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Microsoft Corporation (MSFT) RegDate: 2015-03-26 Updated: 2021-12-14 Ref: https://rdap.arin.net/registry/ip/13.64.0.0 OrgName: Microsoft Corporation OrgId: MSFT Address: One Microsoft Way City: Redmond StateProv: WA PostalCode: 98052 Country: US RegDate: 1998-07-10 Updated: 2025-06-10 Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to: Comment: * https://cert.microsoft.com. Comment: Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact: Comment: * [email protected]. Comment: Comment: To report security vulnerabilities in Microsoft products and services, please contact: Comment: * [email protected]. Comment: Comment: For legal and law enforcement-related requests, please contact: Comment: * [email protected] Comment: Comment: For routing, peering or DNS issues, please Comment: contact: Comment: * [email protected] Ref: https://rdap.arin.net/registry/entity/MSFT OrgTechHandle: BEDAR6-ARIN OrgTechName: Bedard, Dawn OrgTechPhone: +1-425-538-6637 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN OrgTechHandle: IPHOS5-ARIN OrgTechName: IPHostmaster, IPHostmaster OrgTechPhone: +1-425-538-6637 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN OrgTechHandle: MRPD-ARIN OrgTechName: Microsoft Routing, Peering, and DNS OrgTechPhone: +1-425-882-8080 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN OrgRoutingHandle: CHATU3-ARIN OrgRoutingName: Chaturmohta, Somesh OrgRoutingPhone: +1-425-882-8080 OrgRoutingEmail: [email protected] OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN OrgTechHandle: SINGH683-ARIN OrgTechName: Singh, Prachi OrgTechPhone: +1-425-707-5601 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN OrgAbuseHandle: MAC74-ARIN OrgAbuseName: Microsoft Abuse Contact OrgAbusePhone: +1-425-882-8080 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
references
Scan ID: S-5thsJ4jlWSA, https://www.virustotal.com/gui/collection/2e519dcc314b2c036e7f6b5e7e691bc359a1300fa0521022aef0ce66ce48f1c7, https://www.virustotal.com/gui/collection/2e519dcc314b2c036e7f6b5e7e691bc359a1300fa0521022aef0ce66ce48f1c7/iocs, https://www.virustotal.com/graph/embed/gd67698ddea1e47ca9b50e0e0bf5b34ffbc6e4305328d4dfc997a86046da0cda6?theme=dark, https://app.malcore.io/share/652553f6aec33d70a1dbbd25/681f8d9a33510abd7f7cb089 - Readable Strings, https://www.hybrid-analysis.com/sample/f6263e96056bbb4e0b750fea1d4aa466f39f52c6052ad42084d4371273d5d264, https://www.hybrid-analysis.com/sample/f6263e96056bbb4e0b750fea1d4aa466f39f52c6052ad42084d4371273d5d264/682236230d2a1dace50cac79, https://app.malcore.io/share/652553f6aec33d70a1dbbd25/681f8d9c33510abd7f7cb0cc - EXIF Data, https://app.malcore.io/share/652553f6aec33d70a1dbbd25/681f8d8933510abd7f7caf8a - YARA Rules, https://www.virustotal.com/gui/collection/7eaf72c6d83e1a53843e882b3139de2f1adfb0694d941fc25711382f04550194/summary, https://www.virustotal.com/gui/collection/7eaf72c6d83e1a53843e882b3139de2f1adfb0694d941fc25711382f04550194/iocs, https://www.virustotal.com/graph/embed/g44bd45d852dc47059636e6dd4313a995ae2d247fe58745a6b270b46d0b330b39?theme=dark, https://viz.greynoise.io/analysis/5ba1fbf1-b14f-4ccb-b055-ed78f6154e51, https://app.malcore.io/share/652553f6aec33d70a1dbbd25/67ab2665782e1dfbf8ec2d3c, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://metadefender.com/results/file/bzI1MDMwMVFWaXRDS0hpWElYcnV0QllCYlB1, https://mwdb.cert.pl/file/efb45096e24a61b488eb809bd8edf874d15bb498dd75ced8b888b020c87e5c6c, https://n0paste.eu/UH6n5pD/, https://www.virustotal.com/gui/collection/c1ea74232c607b23ded09484664f00ae58f911ccb82433d042056cbb84c9d602/summary, https://www.virustotal.com/gui/collection/c1ea74232c607b23ded09484664f00ae58f911ccb82433d042056cbb84c9d602/iocs, https://www.virustotal.com/graph/embed/ga590434b8e274dc99fd39dd298c8c786abff51132c8d4646bb3fb3f1f4c3d100?theme=dark, https://www.virustotal.com/graph/embed/g16457cd5ead246d99d2ecf37b965641b258cffddb8374ad194cdea194868d1ec?theme=dark, https://www.virustotal.com/graph/embed/g2ef035cd31754a649909336c174aa141b9cca7e431994d12969e0d9d73a01b71?theme=dark, https://www.virustotal.com/graph/embed/g1ea71614909243c1a291970fa39651a2d169deef25b7418fab2f0299221eb152?theme=dark, https://www.virustotal.com/graph/embed/g20d14d97883a4127a500c45fcfb6e3e4961a30ef4bf74db7ab918bcbdb3f476b?theme=dark, https://www.virustotal.com/gui/collection/c1ea74232c607b23ded09484664f00ae58f911ccb82433d042056cbb84c9d602/graph, https://www.filescan.io/uploads/66feb74d83903120b70c820f/reports/0a3a6c27-a872-4e0c-86a4-0fc690fb5ecd/details, https://tip.neiki.dev/file/fb0b66efe3b780270db0693b6df42dd08068428b86fc1a579fe5117d4ae76e07/network, http://www.hybrid-analysis.com/file-collection/66febb8ee0244a7af5014d61, https://www.virustotal.com/gui/collection/33a61b144ffdece76551464e76866ab59346f0fa3f1f97380b401c1ac3f0d305/summary, https://www.virustotal.com/graph/embed/g157209fb9f6643a8bc819522fd9e644c70ae0f541aa347b4aa19b1636ee6d556?theme=dark, https://app.malcore.io/share/652553f6aec33d70a1dbbd25/65d8c22c9a6367d4742ddd59, https://www.virustotal.com/gui/collection/d6ec969e2e2b76f2bdb3b75595c50b9bfea53d730e2be98936896a3d110c3531, https://www.virustotal.com/gui/collection/d6ec969e2e2b76f2bdb3b75595c50b9bfea53d730e2be98936896a3d110c3531/iocs, https://www.proofpoint.com/us/blog/cloud-security/community-alert-ongoing-malicious-campaign-impacting-azure-cloud-environments, https://www.virustotal.com/gui/collection/bd65940df2423788fcc8623495dfdafdfd4236d93533db0256db5ff4347b65f9/iocs, https://www.virustotal.com/gui/collection/33a61b144ffdece76551464e76866ab59346f0fa3f1f97380b401c1ac3f0d305/iocs, https://viz.greynoise.io/analysis/6d4e20f2-7e0c-4d31-83a6-f973343f4dd1, https://viz.greynoise.io/analysis/5f89eddc-2668-47a2-8f6b-d4d81a31180c, https://us-test-sandbox.recordedfuture.com/240617-g49essyaqa, https://us-test-sandbox.recordedfuture.com/240617-h4dhsszdkg, https://us-test-sandbox.recordedfuture.com/240617-h53t3stfmj, https://us-test-sandbox.recordedfuture.com/240617-jak68azfqa, https://us-test-sandbox.recordedfuture.com/240617-h73bbszepa, https://tria.ge/240617-g49essyaqa/behavioral1, https://www.virustotal.com/graph/embed/g5d8ecedaf40940ec8c84636da79426ec6a5f316d51874b499b47a02a8cef4a21?theme=dark, https://www.virustotal.com/gui/collection/46ca419c04173d8536d50ac2d0ee2a1cb77d40073f78cbe97afd7eedae3a213a, https://www.virustotal.com/graph/embed/g15c17db48fbc4e208081cc74daf8d7ff20f58b08f2f445998a2c37182a1f0ca6?theme=dark, https://www.virustotal.com/graph/embed/gfe87d78638614a02ad3affd39fa6f519f01eccc6411c47db97ffd43c9613ec9a?theme=dark, https://www.virustotal.com/gui/collection/46ca419c04173d8536d50ac2d0ee2a1cb77d40073f78cbe97afd7eedae3a213a/summary, https://www.virustotal.com/graph/embed/g35655762e9374fde91a09af5d29fd4b991c4dde7b5524c4ba1c134983fbfd1a6?theme=dark, https://www.virustotal.com/graph/embed/gd282fcb0660e47c0be25fce29a6fe66df492edacdd71434e8d1602c472c9ba6c?theme=dark

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 13 days ago
Appeared in 4 threat reports