Browse Botnet C&Cs

Here you can browse the list of botnet Command&Control servers (C&Cs) tracked by Feodo Tracker, associated with Dridex and Emotet (aka Heodo). When Feodo Tracker was launched in 2010, it was ment to track Feodo botnet C&Cs. However, Feodo evolved further and different piece of malware of Feodo appeared:

• Cridex: also known as Bugat was an ebanking Trojan active until around 2013. This variant is not active anymore.
• Feodo: is a successor of the Cridex ebanking Trojan that first appeared in 2010. This variant is not active anymore.
• Geodo: is a successor of the Feodo ebanking Trojan that first appeared in 2014. This variant is commonly also known as Emotet. This variant is not active anymore.
• Dridex: is a successor of the Cridex ebanking Trojan. It first appeared in 2011 and is still very active as of today (2018). There are speculations that the botnet masters behind the ebanking Trojan Dyre moved their operation over to Dridex.
• Heodo: is a successor of the Geodo (aka Emotet). It first appeared in March 2017 and is also commonly known as Emotet. While it was initally used to commit ebanking fraud, it later turned over to a Pay-Per-Install (PPI)-like botnet which is propagating itself through compromised email credentials.
• TrickBot: has no code base with Emotet. However, TrickBot usually gets dropped by Emotet for lateral movement and to drop additional malware (such as Ryuk ransomware).

Filter for: Heodo (aka Emotet) TrickBot

Firstseen (UTC)	Host	Malware	Status	SBL	Network (ASN)	Country
2021-01-22 23:09:05	3.14.70.198	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-22 23:09:05	34.224.74.175	TrickBot	Offline	Not listed	AS14618 AMAZON-AES	US
2021-01-22 22:23:32	54.227.41.29	TrickBot	Offline	Not listed	AS14618 AMAZON-AES	US
2021-01-22 22:23:32	3.19.60.159	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-22 16:04:06	69.38.130.14	Heodo	Offline	Not listed	AS26878 TWRS-NYC	US
2021-01-22 10:43:04	108.53.88.101	Heodo	Offline	Not listed	AS701 UUNET	US
2021-01-22 10:43:04	195.159.28.230	Heodo	Online	Not listed	AS2116 ASN-CATCHCOM	NO
2021-01-22 10:43:04	79.130.130.240	Heodo	Online	Not listed	AS6799 OTENET-GR Athens - Greece	GR
2021-01-22 10:37:04	51.255.203.164	Heodo	Online	Not listed	AS16276 OVH	FR
2021-01-22 10:37:04	84.232.229.24	Heodo	Online	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2021-01-22 10:37:04	217.160.169.110	Heodo	Online	Not listed	AS8560 IONOS-AS This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&	DE
2021-01-22 10:37:04	209.33.120.130	Heodo	Online	Not listed	AS19108 SUDDENLINK-COMMUNICATIONS	US
2021-01-22 10:37:04	201.48.121.65	Heodo	Online	Not listed	AS16735 ALGAR TELECOM S/A	BR
2021-01-20 18:51:15	85.204.116.83	TrickBot	Offline	Not listed	AS48874 HOSTMAZE HOSTMAZE	RO
2021-01-20 14:33:11	88.58.209.2	Heodo	Online	Not listed	AS3269 ASN-IBSNAZ	IT
2021-01-20 14:33:11	201.212.61.66	Heodo	Offline	Not listed	AS10481 Telecom Argentina S.A.	AR
2021-01-20 14:10:13	12.175.220.98	Heodo	Online	Not listed	AS7018 ATT-INTERNET4	US
2021-01-20 14:08:18	181.10.46.92	Heodo	Offline	Not listed	AS7303 Telecom Argentina S.A.	AR
2021-01-20 12:28:04	91.233.197.70	Heodo	Offline	Not listed	AS212755 EXACLOUD http://www.exacloud.net	ES
2021-01-20 12:05:05	75.113.193.72	Heodo	Online	Not listed	AS33363 BHN-33363	US
2021-01-20 12:05:05	78.182.254.231	Heodo	Offline	Not listed	AS9121 TTNET	TR
2021-01-20 12:05:05	180.222.161.85	Heodo	Online	Not listed	AS45510 TELCOINABOX-AU Level 10, 9 Hunter Street	AU
2021-01-20 12:05:05	162.241.204.233	Heodo	Online	Not listed	AS46606 UNIFIEDLAYER-AS-1	US
2021-01-20 10:34:22	115.21.224.117	Heodo	Offline	Not listed	AS4766 KIXS-AS-KR Korea Telecom	KR
2021-01-20 10:02:23	65.32.168.171	Heodo	Online	Not listed	AS33363 BHN-33363	US
2021-01-20 09:58:46	143.0.85.206	Heodo	Offline	Not listed	AS263998 SIM Telecom	BR
2021-01-19 19:48:12	2.58.16.88	Heodo	Offline	Not listed	AS64421 SERTEX-AS	LV
2021-01-16 18:58:04	54.244.106.110	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-15 23:10:27	91.93.3.85	Heodo	Offline	Not listed	AS34984 TELLCOM-AS	TR
2021-01-15 19:06:19	201.163.74.204	Heodo	Offline	Not listed	AS11172 Alestra, S. de R.L. de C.V.	MX
2021-01-13 00:33:26	190.103.228.24	Heodo	Online	Not listed	AS27983 Red Intercable Digital S.A.	AR
2021-01-12 22:44:33	93.146.143.191	Heodo	Online	Not listed	AS30722 VODAFONE-IT-ASN	IT
2021-01-12 20:43:15	190.251.200.206	Heodo	Online	Not listed	AS13489 EPM Telecomunicaciones S.A. E.S.P.	CO
2021-01-12 20:08:50	49.206.16.156	Heodo	Offline	Not listed	AS24309 CABLELITE-AS-AP Atria Convergence Technologies Pvt. Ltd. Broadband Internet Service Provider INDIA	IN
2021-01-12 19:55:19	3.15.209.89	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-12 19:55:19	18.188.18.65	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-12 18:59:49	206.189.232.2	Heodo	Online	Not listed	AS14061 DIGITALOCEAN-ASN	US
2021-01-11 21:12:08	201.185.69.28	Heodo	Offline	Not listed	AS13489 EPM Telecomunicaciones S.A. E.S.P.	CO
2021-01-10 17:32:27	200.75.39.254	Heodo	Offline	Not listed	AS19429 ETB - Colombia	CO
2021-01-09 22:03:36	161.49.84.2	Heodo	Online	Not listed	AS17639 CONVERGE-AS Converge ICT Solutions Inc.	PH
2021-01-09 18:42:23	69.49.88.46	Heodo	Offline	Not listed	AS33734 MPW-MACHLINK-NET	US
2021-01-09 17:20:10	34.209.40.84	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-08 19:07:57	54.184.178.68	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2021-01-08 19:07:46	52.90.110.55	TrickBot	Offline	Not listed	AS14618 AMAZON-AES	US
2021-01-08 18:33:41	107.172.188.113	TrickBot	Offline	Not listed	AS36352 AS-COLOCROSSING	US
2021-01-07 19:35:01	198.46.198.116	TrickBot	Offline	Not listed	AS36352 AS-COLOCROSSING	US
2021-01-07 19:28:27	64.74.160.228	TrickBot	Offline	Not listed	AS10912 INTERNAP-BLK	US
2021-01-07 19:20:39	45.14.226.101	TrickBot	Offline	Not listed	AS62068 SPECTRAIP SpectraIP B.V.	NL
2021-01-07 19:07:11	107.152.46.188	TrickBot	Offline	Not listed	AS46844 ST-BGP	US
2021-01-07 17:34:57	45.155.173.248	TrickBot	Offline	Not listed	AS30823 COMBAHTON combahton GmbH	DE
2021-01-07 17:15:08	185.198.59.45	TrickBot	Offline	Not listed	AS60117 HS	AE
2021-01-06 07:37:27	66.57.108.14	Heodo	Offline	Not listed	AS11426 TWC-11426-CAROLINAS	US
2021-01-06 00:57:14	198.46.198.115	TrickBot	Offline	Not listed	AS36352 AS-COLOCROSSING	US
2021-01-06 00:21:37	64.74.160.218	TrickBot	Offline	Not listed	AS63018 DEDICATED	US
2021-01-05 10:47:58	82.48.39.246	Heodo	Offline	Not listed	AS3269 ASN-IBSNAZ	IT
2021-01-05 10:47:58	190.247.139.101	Heodo	Offline	Not listed	AS10318 Telecom Argentina S.A.	AR
2021-01-05 02:41:13	186.147.237.3	Heodo	Offline	Not listed	AS10620 Telmex Colombia S.A.	CO
2021-01-05 02:38:34	5.2.136.90	Heodo	Offline	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2021-01-04 20:56:04	201.143.224.27	Heodo	Offline	Not listed	AS6332 Telefonos del Noroeste, S.A. de C.V.	MX
2021-01-04 20:27:30	66.70.246.0	TrickBot	Offline	Not listed	AS16276 OVH	CA
2021-01-04 20:22:35	158.51.96.31	TrickBot	Offline	Not listed	AS46844 ST-BGP	US
2021-01-04 20:22:32	198.144.191.144	TrickBot	Online	Not listed	AS36352 AS-COLOCROSSING	US
2021-01-04 20:15:52	198.44.97.143	TrickBot	Offline	Not listed	AS54290 HOSTWINDS	US
2021-01-04 19:56:23	45.83.151.103	TrickBot	Offline	Not listed	AS35913 DEDIPATH-LLC	US
2021-01-04 19:52:08	45.89.125.214	TrickBot	Offline	Not listed	AS30823 COMBAHTON combahton GmbH	DE
2021-01-04 18:24:02	59.21.235.119	Heodo	Online	Not listed	AS4766 KIXS-AS-KR Korea Telecom	KR
2021-01-04 18:24:02	173.70.61.180	Heodo	Offline	Not listed	AS701 UUNET	US
2021-01-04 18:21:12	152.170.79.100	Heodo	Offline	Not listed	AS10318 Telecom Argentina S.A.	AR
2021-01-04 16:59:13	125.0.215.60	Heodo	Offline	Not listed	AS2510 INFOWEB FUJITSU LIMITED	JP
2021-01-04 16:41:04	89.106.251.163	Heodo	Online	Not listed	AS5563 URAL Ural Regional Net	RU
2021-01-04 16:32:23	90.160.138.175	Heodo	Offline	Not listed	AS12479 UNI2-AS	ES
2021-01-03 19:43:40	23.227.196.5	TrickBot	Offline	Not listed	AS29802 HVC-AS	US
2021-01-03 17:20:59	138.197.99.250	Heodo	Online	Not listed	AS14061 DIGITALOCEAN-ASN	US
2021-01-03 17:19:37	82.208.146.142	Heodo	Offline	Not listed	AS6830 LIBERTYGLOBAL Liberty Global (formerly UPC Broadband Holding, aka AORTA)	RO
2021-01-01 19:13:56	93.149.120.214	Heodo	Offline	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-12-30 12:44:10	113.161.176.235	Heodo	Offline	Not listed	AS45899 VNPT-AS-VN VNPT Corp	VN
2020-12-30 11:28:26	75.188.107.174	Heodo	Offline	Not listed	AS10796 TWC-10796-MIDWEST	US
2020-12-30 11:22:10	75.109.111.18	Heodo	Online	Not listed	AS19108 SUDDENLINK-COMMUNICATIONS	US
2020-12-30 11:22:10	84.232.252.202	Heodo	Offline	Not listed	AS8708 RCS-RDS 73-75 Dr. Staicovici	RO
2020-12-30 06:23:04	180.52.66.193	Heodo	Offline	Not listed	AS4713 OCN NTT Communications Corporation	JP
2020-12-29 22:56:45	157.245.123.197	Heodo	Offline	Not listed	AS14061 DIGITALOCEAN-ASN	US
2020-12-29 01:14:33	189.34.18.252	Heodo	Offline	Not listed	AS28573 CLARO S.A.	BR
2020-12-29 00:04:06	24.230.124.78	Heodo	Offline	Not listed	AS11232 MIDCO-NET	US
2020-12-28 22:16:06	93.146.48.84	Heodo	Offline	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-12-28 22:11:54	24.231.88.85	Heodo	Offline	Not listed	AS11260 EASTLINK-HSI	CA
2020-12-28 19:24:51	98.109.133.80	Heodo	Online	Not listed	AS701 UUNET	US
2020-12-28 19:24:51	75.177.207.146	Heodo	Online	Not listed	AS11426 TWC-11426-CAROLINAS	US
2020-12-28 18:56:04	31.27.59.105	Heodo	Online	Not listed	AS30722 VODAFONE-IT-ASN	IT
2020-12-28 18:56:04	190.210.246.253	Heodo	Online	Not listed	AS16814 NSS S.A.	AR
2020-12-28 18:56:04	190.136.176.89	Heodo	Offline	Not listed	AS7303 Telecom Argentina S.A.	AR
2020-12-28 16:46:10	78.189.148.42	Heodo	Online	Not listed	AS9121 TTNET	TR
2020-12-25 18:24:24	3.134.98.73	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2020-12-25 18:24:24	3.139.102.85	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2020-12-25 18:24:24	18.191.152.61	TrickBot	Offline	Not listed	AS16509 AMAZON-02	US
2020-12-23 18:42:05	186.96.170.61	Heodo	Online	Not listed	AS22884 TOTAL PLAY TELECOMUNICACIONES SA DE CV	MX
2020-12-23 18:41:03	190.162.232.138	Heodo	Online	Not listed	AS22047 VTR BANDA ANCHA S.A.	CL
2020-12-23 18:36:04	197.211.245.21	Heodo	Online	Not listed	AS30969 ZOL-AS	ZW
2020-12-23 18:36:04	70.183.211.3	Heodo	Online	Not listed	AS22773 ASN-CXA-ALL-CCI-22773-RDC	US
2020-12-22 14:55:28	110.172.180.180	Heodo	Online	Not listed	AS18002 WORLDPHONE-IN AS Number for Interdomain Routing	IN
2020-12-22 14:17:04	103.124.152.221	Heodo	Offline	Not listed	AS134877 SRIVARI-AS Sri Vari Network Private Limited	IN