Browse Botnet C&Cs

Here you can browse the list of botnet Command&Control servers (C&Cs) tracked by Feodo Tracker, associated with Dridex and Emotet (aka Heodo). When Feodo Tracker was launched in 2010, it was ment to track Feodo botnet C&Cs. However, Feodo evolved further and different piece of malware of Feodo appeared:

• Cridex: also known as Bugat was an ebanking Trojan active until around 2013. This variant is not active anymore.
• Feodo: is a successor of the Cridex ebanking Trojan that first appeared in 2010. This variant is not active anymore.
• Geodo: is a successor of the Feodo ebanking Trojan that first appeared in 2014. This variant is commonly also known as Emotet. This variant is not active anymore.
• Dridex: is a successor of the Cridex ebanking Trojan. It first appeared in 2011 and is still very active as of today (2018). There are speculations that the botnet masters behind the ebanking Trojan Dyre moved their operation over to Dridex.
• Heodo: is a successor of the Geodo (aka Emotet). It first appeared in March 2017 and is also commonly known as Emotet. While it was initally used to commit ebanking fraud, it later turned over to a Pay-Per-Install (PPI)-like botnet which is propagating itself through compromised email credentials.
• TrickBot: has no code base with Emotet. However, TrickBot usually gets dropped by Emotet for lateral movement and to drop additional malware (such as Ryuk ransomware).

Filter for: Heodo (aka Emotet) TrickBot

Firstseen (UTC)	Host	Malware	Status	SBL	Network (ASN)	Country
2020-10-21 22:46:22	37.183.81.217	Heodo	Online	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-10-21 22:46:16	181.56.32.36	Heodo	Online	Not listed	AS10620 Telmex Colombia S.A.	CO
2020-10-21 22:34:35	50.245.107.73	Heodo	Online	Not listed	AS7922 COMCAST-7922	US
2020-10-21 22:34:33	94.230.70.6	Heodo	Online	Not listed	AS48500 IRPNET-AS	IT
2020-10-21 22:34:24	95.9.5.93	Heodo	Online	Not listed	AS9121 TTNET	TR
2020-10-21 22:34:14	102.182.93.220	Heodo	Offline	Not listed	AS37611 Afrihost	ZA
2020-10-21 22:34:13	85.105.111.166	Heodo	Online	Not listed	AS9121 TTNET	TR
2020-10-21 17:50:34	190.101.156.139	Heodo	Online	Not listed	AS22047 VTR BANDA ANCHA S.A.	CL
2020-10-21 17:26:53	197.245.25.228	Heodo	Offline	Not listed	AS11845 Vox-Telecom	ZA
2020-10-21 17:26:13	96.126.101.6	Heodo	Online	Not listed	AS63949 LINODE-AP Linode, LLC	US
2020-10-21 15:25:20	24.178.90.49	Heodo	Online	Not listed	AS20115 CHARTER-20115	US
2020-10-21 12:08:00	76.121.199.225	Heodo	Offline	Not listed	AS7922 COMCAST-7922	US
2020-10-21 10:28:13	181.59.59.54	Heodo	Offline	Not listed	AS10620 Telmex Colombia S.A.	CO
2020-10-21 10:17:36	194.166.147.143	Heodo	Offline	Not listed	AS1901 EUNETAT-AS A1 Telekom Austria AG	AT
2020-10-21 10:06:35	115.94.207.99	Heodo	Online	Not listed	AS3786 LGDACOM LG DACOM Corporation	KR
2020-10-21 01:05:06	199.38.123.58	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:06	199.38.121.150	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:06	103.109.78.174	TrickBot	Online	Not listed	AS137107 JTMINTER-AS-IN Jtm Internet Private Limited	IN
2020-10-21 01:05:05	199.38.120.89	TrickBot	Online	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:05	208.86.162.241	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:05	199.38.120.91	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:05	208.86.161.113	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:04	208.86.162.215	TrickBot	Offline	Not listed	AS35862 JCWIFI	US
2020-10-21 01:05:04	103.127.165.250	TrickBot	Online	Not listed	AS138520 LNSPL-AS-AP Lalu Network Solutions Private Limited	IN
2020-10-21 01:05:04	103.206.128.121	TrickBot	Online	Not listed	AS134319 ELYZIUM-AS Elyzium Technologies Pvt. Ltd.	IN
2020-10-20 15:05:09	2.85.9.41	Heodo	Online	Not listed	AS6799 OTENET-GR Athens - Greece	GR
2020-10-20 14:26:15	200.243.153.66	Heodo	Offline	Not listed	AS4230 CLARO S.A.	BR
2020-10-20 14:14:23	60.108.128.186	Heodo	Online	Not listed	AS17676 GIGAINFRA Softbank BB Corp.	JP
2020-10-20 14:14:15	5.2.246.108	Heodo	Online	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2020-10-19 19:36:51	86.123.55.0	Heodo	Offline	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2020-10-19 18:56:02	110.37.224.243	Heodo	Online	Not listed	AS38264 WATEEN-IMS-PK-AS-AP National WiMAX/IMS environment	PK
2020-10-19 18:48:04	95.76.142.243	Heodo	Online	Not listed	AS6830 LIBERTYGLOBAL Liberty Global (formerly UPC Broadband Holding, aka AORTA)	RO
2020-10-19 18:48:04	27.83.209.210	Heodo	Offline	Not listed	AS2516 KDDI KDDI CORPORATION	JP
2020-10-19 18:22:57	180.23.53.200	Heodo	Offline	Not listed	AS4713 OCN NTT Communications Corporation	JP
2020-10-19 18:22:48	172.193.79.237	Heodo	Offline	Not listed	AS133414 FOXTEL-AS-AP Foxtel Management Pty Ltd	AU
2020-10-19 18:22:35	188.226.165.170	Heodo	Online	Not listed	AS14061 DIGITALOCEAN-ASN	NL
2020-10-19 18:12:18	177.130.51.198	Heodo	Offline	Not listed	AS52747 Wsp Servicos de Telecomunicacoes Ltda	BR
2020-10-19 18:10:54	24.230.141.169	Heodo	Online	Not listed	AS11232 MIDCO-NET	US
2020-10-19 18:10:49	186.189.249.2	Heodo	Online	Not listed	AS16814 NSS S.A.	AR
2020-10-19 17:57:07	91.121.87.90	Heodo	Offline	Not listed	AS16276 OVH	FR
2020-10-19 14:16:11	104.131.144.215	Heodo	Offline	Not listed	AS14061 DIGITALOCEAN-ASN	US
2020-10-19 13:36:34	201.71.228.86	Heodo	Offline	Not listed	AS28640 VIPWay Telecomunicacoes Ltda	BR
2020-10-19 13:36:32	181.61.182.143	Heodo	Online	Not listed	AS10620 Telmex Colombia S.A.	CO
2020-10-19 13:36:28	181.123.6.86	Heodo	Online	Not listed	AS23201 Telecel S.A.	PY
2020-10-19 13:36:26	173.212.197.71	Heodo	Online	Not listed	AS51167 CONTABO	DE
2020-10-19 13:36:25	59.148.253.194	Heodo	Online	Not listed	AS9269 HKBN-AS-AP Hong Kong Broadband Network Ltd.	HK
2020-10-19 12:38:40	123.142.37.166	Heodo	Offline	Not listed	AS3786 LGDACOM LG DACOM Corporation	KR
2020-10-19 12:38:38	89.121.205.18	Heodo	Online	Not listed	AS9050 RTD Bucharest, Romania	RO
2020-10-19 12:38:37	66.76.12.94	Heodo	Online	Not listed	AS19108 SUDDENLINK-COMMUNICATIONS	US
2020-10-19 12:38:36	181.126.74.180	Heodo	Offline	Not listed	AS23201 Telecel S.A.	PY
2020-10-19 12:38:31	49.3.224.99	Heodo	Online	Not listed	AS4804 MPX-AS Microplex PTY LTD	AU
2020-10-19 12:38:26	212.71.250.88	Heodo	Offline	Not listed	AS63949 LINODE-AP Linode, LLC	GB
2020-10-17 01:54:01	82.78.179.117	Heodo	Offline	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2020-10-16 18:28:35	41.76.213.144	Heodo	Online	Not listed	AS37611 Afrihost	ZA
2020-10-16 18:07:16	77.78.196.173	Heodo	Offline	Not listed	AS42560 BA-TELEMACH-AS Telemach d.o.o. Sarajevo	BA
2020-10-16 18:07:16	109.190.249.106	Heodo	Offline	Not listed	AS35540 OVH-TELECOM	FR
2020-10-16 18:00:42	200.59.6.174	Heodo	Online	Not listed	AS12150 COTELCAM	AR
2020-10-16 17:50:48	61.33.119.226	Heodo	Offline	Not listed	AS3786 LGDACOM LG DACOM Corporation	KR
2020-10-16 17:50:45	76.171.227.238	Heodo	Offline	Not listed	AS20001 TWC-20001-PACWEST	US
2020-10-16 17:50:30	103.236.179.162	Heodo	Online	Not listed	AS135607 INFINIVAN-AS-AP Infinivan Incorporated	PH
2020-10-16 17:50:27	37.179.145.105	Heodo	Offline	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-10-16 17:50:25	186.222.250.115	Heodo	Offline	Not listed	AS28573 CLARO S.A.	BR
2020-10-16 17:50:21	79.118.74.90	Heodo	Online	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2020-10-16 17:50:19	175.143.12.123	Heodo	Online	Not listed	AS4788 TMNET-AS-AP TM Net, Internet Service Provider	MY
2020-10-16 17:50:18	189.223.16.99	Heodo	Online	Not listed	AS8151 Uninet S.A. de C.V.	MX
2020-10-16 17:50:16	172.86.186.21	Heodo	Online	Not listed	AS32489 AMANAHA-NEW	CA
2020-10-16 15:54:21	180.21.3.52	Heodo	Online	Not listed	AS4713 OCN NTT Communications Corporation	JP
2020-10-16 15:04:03	2.45.176.233	Heodo	Offline	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-10-16 05:05:27	194.5.249.241	TrickBot	Offline	Not listed	AS64398 NXTHOST-64398 NXTHOST.COM - NXTSERVERS SRL	RO
2020-10-15 21:33:44	109.190.35.249	Heodo	Offline	Not listed	AS35540 OVH-TELECOM	FR
2020-10-15 19:35:03	185.117.73.50	TrickBot	Offline	SBL352624	AS60117 HS	NL
2020-10-15 19:30:15	85.204.116.204	TrickBot	Offline	Not listed	AS48874 HOSTMAZE HOSTMAZE	RO
2020-10-15 19:30:04	104.161.32.112	TrickBot	Offline	Not listed	AS53755 IOFLOOD	US
2020-10-15 18:38:36	74.214.230.200	Heodo	Offline	Not listed	AS36728 EMERYTELCOM	US
2020-10-15 18:38:33	209.54.13.14	Heodo	Offline	Not listed	AS11492 CABLEONE	US
2020-10-15 18:38:27	183.176.82.231	Heodo	Offline	Not listed	AS7522 STCN STNet, Incorporated	JP
2020-10-15 18:38:22	81.215.230.173	Heodo	Online	Not listed	AS9121 TTNET	TR
2020-10-15 15:53:54	184.180.181.202	Heodo	Online	Not listed	AS22773 ASN-CXA-ALL-CCI-22773-RDC	US
2020-10-15 15:53:29	213.52.74.198	Heodo	Online	Not listed	AS2116 ASN-CATCHCOM	NO
2020-10-15 15:02:58	104.161.32.111	TrickBot	Online	Not listed	AS53755 IOFLOOD	US
2020-10-15 15:02:54	86.104.194.30	TrickBot	Offline	Not listed	AS48874 HOSTMAZE HOSTMAZE	RO
2020-10-15 15:02:54	45.89.127.92	TrickBot	Online	Not listed	AS30823 COMBAHTON combahton GmbH	DE
2020-10-15 14:58:19	121.117.147.153	Heodo	Offline	Not listed	AS4713 OCN NTT Communications Corporation	JP
2020-10-15 14:31:08	45.89.127.140	TrickBot	Offline	Not listed	AS30823 COMBAHTON combahton GmbH	DE
2020-10-15 14:31:08	5.2.72.199	TrickBot	Offline	Not listed	AS60404 LITESERVER	NL
2020-10-15 14:30:58	45.89.127.182	TrickBot	Offline	Not listed	AS30823 COMBAHTON combahton GmbH	DE
2020-10-14 20:35:40	190.117.101.56	Heodo	Offline	Not listed	AS12252 America Movil Peru S.A.C.	PE
2020-10-14 20:35:32	47.154.85.229	Heodo	Offline	Not listed	AS5650 FRONTIER-FRTR	US
2020-10-14 20:25:04	75.143.247.51	Heodo	Online	Not listed	AS20115 CHARTER-20115	US
2020-10-14 20:24:59	96.245.227.43	Heodo	Online	Not listed	AS701 UUNET	US
2020-10-14 20:24:58	218.147.193.146	Heodo	Online	Not listed	AS4766 KIXS-AS-KR Korea Telecom	KR
2020-10-14 20:24:53	49.50.209.131	Heodo	Offline	Not listed	AS55853 MEGATEL-AS-AP Megatel	NZ
2020-10-14 20:24:44	5.89.33.136	Heodo	Offline	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-10-14 20:24:41	190.190.219.184	Heodo	Online	Not listed	AS10481 Telecom Argentina S.A.	AR
2020-10-14 20:24:39	74.135.120.91	Heodo	Offline	Not listed	AS10796 TWC-10796-MIDWEST	US
2020-10-14 17:58:06	131.153.22.145	TrickBot	Offline	Not listed	AS60558 SECUREDSERVERS-	NL
2020-10-14 17:58:05	86.104.194.102	TrickBot	Offline	Not listed	AS48874 HOSTMAZE HOSTMAZE	RO
2020-10-14 16:10:34	190.108.228.27	Heodo	Online	Not listed	AS27751 Neunet S.A.	AR
2020-10-14 14:06:29	213.165.178.214	Heodo	Online	Not listed	AS12709 MELITACABLE	MT
2020-10-14 13:06:23	192.175.111.214	Heodo	Offline	Not listed	AS32613 IWEB-AS	CA