IPMediumSignal 0/100
20.197.194.128
Location
BrazilSão Paulo, Sao Paulo
ASN
AS8075
Microsoft Azure Cloud (brazilsouth)
First Seen
Feb 21, 2026
Last Seen
Apr 30, 2026
Found in 14 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Network Information
CountryBrazil
BrazilRegionSão Paulo, Sao Paulo
ASNAS8075
OrganizationMicrosoft Azure Cloud (brazilsouth)
Feed Intelligence Summary
14 reports0% confidence
14
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Apr 30Apr 30
Threat Activity Heatmap
· Peak: 2026-04-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This indicator of compromise (IOC), an IPv4 address, is classified as benign with a score of 0.0 and is explicitly marked as whitelisted. This signifies that despite its prior inclusion in certain threat intelligence feeds, it has undergone a review process and is now deemed non-malicious. Therefore, there is no immediate or significant threat to organizational security stemming from this particular indicator, and its presence does not imply an ongoing compromise or an impending attack. This ass…
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
14
Reports
First seenFeb 21, 2026
Last seenApr 30, 2026
GeolocationBR
CountryBrazil
LocationSão Paulo, Sao Paulo
ASNAS8075
OrgMicrosoft Azure Cloud (brazilsouth)
Coords-23.5500, -46.6330
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 months ago · Last seen 1 month ago
Appeared in 14 threat reports