IPMediumSignal 0/100
23.22.252.240
Location
United StatesAshburn, Virginia
ASN
AS14618
AWS EC2 (us-east-1)
First Seen
Jan 23, 2025
Last Seen
Sep 11, 2025
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Network Information
CountryUnited States
United StatesRegionAshburn, Virginia
ASNAS14618
OrganizationAWS EC2 (us-east-1)
Feed Intelligence Summary
1 report0% confidence
1
Source reports
0%
Confidence score
Category tags
networkproxyresearched
Activity Timeline
Sep 11Sep 11
Threat Activity Heatmap
· Peak: 2025-09-11LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The indicator of compromise (IOC) 23.22.252.240 is an IPv4 address identified from the FreeVPN-Exits feed. Given a whitelist status of 'Yes' and a score of 0.0, this IOC is considered low risk. Its presence on a VPN exit list suggests it is likely associated with users connecting through VPN services rather than malicious activity. This benign classification means it probably reflects normal network traffic and requires no immediate containment or investigation. The inclusion on a VPN exit list …
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
1
Reports
First seenJan 23, 2025
Last seenSep 11, 2025
GeolocationUS
CountryUnited States
LocationAshburn, Virginia
ASNAS14618
OrgAWS EC2 (us-east-1)
Coords39.0438, -77.4874
VirusTotal
Not checked
WHOIS
- raw
- Amazon.com, Inc. AMAZON-EC2-USEAST-10 (NET-23-20-0-0-1) 23.20.0.0 - 23.23.255.255 Amazon Data Services NoVa AMAZON-IAD (NET-23-20-0-0-2) 23.20.0.0 - 23.23.255.255
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 9 months ago
Appeared in 1 threat report