Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 1.54.67.22. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:1.54.67.22
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS18403
AS name:FPT-AS-AP The Corporation for Financing & Promoting Technology
Country:- VN
First seen:2020-08-26 11:49:27 UTC
Last seen:2020-09-01 18:46:31 UTC
Last online:2020-08-29

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-10-01 07:38:47fd0e457ac343682d4383be60ed8f3e21Virustotal results 7 / 68 (10.29%) 1.54.67.2280Heodo
2020-09-09 17:45:43ecb8b0379721894d524f7fa2b53a2551n/a1.54.67.2280Heodo
2020-09-09 17:18:40e93d72f7bb779dfa2f82263b758ea852Virustotal results 7 / 68 (10.29%) 1.54.67.2280
2020-09-09 11:21:06db958d7173bcbf6a273bd6978061107dVirustotal results 7 / 68 (10.29%) 1.54.67.2280
2020-09-09 08:56:13d5715a3d771ca4121df7b7c7a6ebe26cVirustotal results 17 / 67 (25.37%) 1.54.67.2280Heodo
2020-09-09 05:34:37ccd353bd2da71e7e6d4b74aef1e2e1b0n/a1.54.67.2280Heodo
2020-09-09 05:06:44cb95803f275ad660bbc929db10e81dbbn/a1.54.67.2280Heodo
2020-09-09 01:57:01c2ef7d405e1b54a94ee978d0418b421aVirustotal results 39 / 67 (58.21%) 1.54.67.2280Heodo
2020-09-08 15:02:07ba5fa35416371fa3f373b392e164307en/a1.54.67.2280Heodo
2020-09-01 14:18:52b364d51e7b245337f7ed5d9270d9fa35Virustotal results 6 / 67 (8.96%) 1.54.67.2280Heodo
2020-08-31 23:11:347b721a3cba541267d7b4503a933abadbVirustotal results 8 / 69 (11.59%) 1.54.67.2280Heodo
2020-08-31 22:43:356bd9ad60f06a9da8d119d542ccbd84c2Virustotal results 7 / 68 (10.29%) 1.54.67.2280Heodo
2020-08-31 22:16:135d5b759231e5a475eedfbf585a3bf5b3Virustotal results 7 / 68 (10.29%) 1.54.67.2280Heodo
2020-08-31 21:35:584387fb492008214271ec721b3dcc0396Virustotal results 5 / 67 (7.46%) 1.54.67.2280Heodo
2020-08-31 21:19:3139c53915be0c4848546bdf1f03bbb78bVirustotal results 22 / 70 (31.43%) 1.54.67.2280Heodo
2020-08-31 18:56:46013f045c9e714575dbc8d79bcb0e5b1en/a1.54.67.2280
2020-08-31 13:37:194e6770099d329fc92df71bb76b4cf544n/a1.54.67.2280Heodo
2020-08-31 08:41:123cb8ac013bca98e6157872433b97a044Virustotal results 6 / 68 (8.82%) 1.54.67.2280Heodo
2020-08-31 05:29:55a90ad8db081ecc574cb6b00e04367768Virustotal results 7 / 68 (10.29%) 1.54.67.2280Heodo
2020-08-31 01:00:377dd06160ce86a33c006d4a0456446742Virustotal results 8 / 68 (11.76%) 1.54.67.2280Heodo
2020-08-30 23:45:1796e623b319d1da55c5173ee19647b92an/a1.54.67.2280Heodo
2020-08-30 23:43:128f2420c9f7a8087de97e47e6f05c5eaen/a1.54.67.2280Heodo
2020-08-30 22:21:28705c006a4a26e59ee5e410beabc252bfVirustotal results 8 / 68 (11.76%) 1.54.67.2280Heodo
2020-08-30 20:48:184e2edfce7536d9fd86cee21be1b72677Virustotal results 29 / 68 (42.65%) 1.54.67.2280
2020-08-30 04:18:05a13b71c808751a56fc5589b2824d021dVirustotal results 5 / 69 (7.25%) 1.54.67.2280Heodo
2020-08-29 07:16:16c028a976eec41afd2f2e53cb7b133ad9Virustotal results 28 / 66 (42.42%) 1.54.67.2280Heodo
2020-08-29 06:15:59969ab7934d655434254c148cec7f34dbVirustotal results 6 / 67 (8.96%) 1.54.67.2280Heodo
2020-08-29 06:13:45960c3bb25f640379b90df127b374b08dVirustotal results 27 / 66 (40.91%) 1.54.67.2280Heodo
2020-08-29 06:06:489cf4370532b0b6389c6dd9f1668fb48fVirustotal results 5 / 69 (7.25%) 1.54.67.2280Heodo
2020-08-29 06:05:4596365dfa0051b60ba73b1659ac0f6a98n/a1.54.67.2280Heodo
2020-08-29 05:51:2992260bbfb68f98a5fc14d3dc56b2c9b4Virustotal results 9 / 68 (13.24%) 1.54.67.2280Heodo
2020-08-29 05:31:09a6973c103f836467ade9b09ffb496ecbVirustotal results 29 / 65 (44.62%) 1.54.67.2280Heodo
2020-08-29 05:29:45a2e70279324d8856989c8840fbfc48d8Virustotal results 6 / 64 (9.38%) 1.54.67.2280
2020-08-29 05:28:04931be9b32a59759ca42deb3101b55381Virustotal results 6 / 68 (8.82%) 1.54.67.2280Heodo
2020-08-29 05:23:216766818a0cc2834fba7644c2dc9b159bVirustotal results 29 / 68 (42.65%) 1.54.67.2280Heodo
2020-08-29 05:15:309ddcc515978ba9b7b862ed67b973f1acn/a1.54.67.2280Heodo
2020-08-28 18:49:3322be856fac2e6862e0859b7f6b9a2e18Virustotal results 32 / 64 (50.00%) 1.54.67.2280Heodo
2020-08-26 18:09:09123f4d16faa954cf004816cede068b2dn/a1.54.67.2280Heodo
2020-08-26 18:08:55124077df594a322128e62ccdd56dcd54n/a1.54.67.2280Heodo
2020-08-26 18:08:5263f4383092ee4bb8d34c486f31e5cb33n/a1.54.67.2280Heodo
2020-08-26 18:06:50517a222125214eb3035c44fd8af1782fn/a1.54.67.2280Heodo
2020-08-26 18:04:35e1237dea04b1cef618bc0b0d906763a0n/a1.54.67.2280Heodo
2020-08-26 18:04:1504a9587a869b1cdb19ac3c8dcc59accbn/a1.54.67.2280Heodo
2020-08-26 17:58:156011afd2542015d1a65ff280c322be59n/a1.54.67.2280Heodo
2020-08-26 17:54:10a0d49d0d24331b17e18a06dc43abfd31n/a1.54.67.2280Heodo
2020-08-26 17:52:25142fc30d69a8ed861ad2e7ef57910ff7n/a1.54.67.2280Heodo
2020-08-26 17:49:541bfeddab60dc97d2fd641a095153c810n/a1.54.67.2280Heodo
2020-08-26 17:47:4101810c3c4f546b59a1495bb5ed8b033dVirustotal results 9 / 68 (13.24%) 1.54.67.2280Heodo
2020-08-26 17:47:37e4591947ff70e4358cea986d3fd1c367n/a1.54.67.2280Heodo
2020-08-26 17:45:36b3583d101c02f17a0139bda75cfd01c1n/a1.54.67.2280Heodo
2020-08-26 17:42:361487c3670b315439bd165a13279e45e5Virustotal results 9 / 67 (13.43%) 1.54.67.2280Heodo
2020-08-26 17:40:403df2c89c1cec79ec411a068774995f68n/a1.54.67.2280Heodo
2020-08-26 17:33:332339694bca475c9f1505768f01bca084n/a1.54.67.2280Heodo
2020-08-26 17:16:2555b53a76def323fae936a5be47df8e61n/a1.54.67.2280Heodo
2020-08-26 17:04:09ca77ca792cbd38ad705a8ff85bc645f3Virustotal results 11 / 69 (15.94%) 1.54.67.2280Heodo
2020-08-26 16:59:10a77fb51713948fa4e62a24b0bbb9074bn/a1.54.67.2280Heodo
2020-08-26 16:56:336fd8fa86593051dd0dbbf7228ad89d97n/a1.54.67.2280Heodo
2020-08-26 16:53:53a89ac0dab805189aaab7137bc17fbc94n/a1.54.67.2280Heodo
2020-08-26 13:52:01e89ab0d3daf4408f2fdd2dc8c0d75c59n/a1.54.67.2280Heodo
2020-08-26 12:02:562a56242f62981b6869779a7ff7698f66n/a1.54.67.2280Heodo

# of malware samples: 60