Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 105.224.170.35. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:105.224.170.35
Hostname:105-224-170-35.south.dsl.telkomsa.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS37457
AS name:Telkom-Internet
Country:- ZA
First seen:2019-03-11 13:22:18 UTC
Last seen:2019-03-29 08:20:32 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-03-29 08:31:03887cd1245e9c84cb659549f957b24440Virustotal results 49/70 (70.00%) 105.224.170.3580Heodo
2019-03-17 13:56:008a4f43357d6e8e4cdcf74e14a54d290fn/a105.224.170.3580Heodo
2019-03-12 14:57:086430121c34513fe7059b7e5ab3800cd8Virustotal results 39/63 (61.90%) 105.224.170.3580Heodo
2019-03-12 13:50:3617684f76cd1e25c80f4fed181442d654Virustotal results 30/68 (44.12%) 105.224.170.3580Heodo
2019-03-12 13:49:515fe566ff1dbfbff1c6a644fc74bed0c7Virustotal results 14/68 (20.59%) 105.224.170.3580Heodo
2019-03-12 13:46:52430909142bea3fe1ab00106993fb9721Virustotal results 12/65 (18.46%) 105.224.170.3580Heodo
2019-03-12 13:23:04cc85f076e7e82a0e4c1922881ecc2d27Virustotal results 35/64 (54.69%) 105.224.170.3580Heodo
2019-03-12 11:48:06d1e1fd668b88bdf114d9a95af3af8a49Virustotal results 21/70 (30.00%) 105.224.170.3580Heodo
2019-03-12 10:59:17cbf59b83bea8af31ea07e289eddd2dd3Virustotal results 37/57 (64.91%) 105.224.170.3580Heodo
2019-03-12 10:43:4404c78da54581976222cf6201766bb2daVirustotal results 39/58 (67.24%) 105.224.170.3580Heodo
2019-03-12 10:35:24ae40eb539ec2b605be901e250c5cd975Virustotal results 39/57 (68.42%) 105.224.170.3580Heodo
2019-03-12 08:06:4829274efb1aff5614f30ed73ef511943bVirustotal results 14/59 (23.73%) 105.224.170.3580Heodo
2019-03-12 08:00:255e22e07ab04f5b1635bb0b02bba9c533Virustotal results 37/66 (56.06%) 105.224.170.3580Heodo
2019-03-12 06:44:486cf8ca587aa20e3bf617d93320c69702Virustotal results 40/66 (60.61%) 105.224.170.3580Heodo
2019-03-12 06:21:17246f18dd518b071ae4f5fb0b5cd993edVirustotal results 15/64 (23.44%) 105.224.170.3580Heodo
2019-03-12 05:55:55d893526586dea0afec506c8e0b120ba1Virustotal results 14/66 (21.21%) 105.224.170.3580Heodo
2019-03-12 03:52:20cece3cfff96362bf3443a1047b65ce55Virustotal results 15/65 (23.08%) 105.224.170.3580Heodo
2019-03-12 02:40:5302915b365397192b148e23e969e85080Virustotal results 13/64 (20.31%) 105.224.170.3580Heodo
2019-03-11 21:38:14c5ffd321b09277a2f0282224fd79a086Virustotal results 14/64 (21.88%) 105.224.170.3580Heodo
2019-03-11 21:26:092520d4f7d2f2d08cb637955ea2375816Virustotal results 43/69 (62.32%) 105.224.170.3580Heodo
2019-03-11 21:14:50b924c5c11afc10b5a4791d144fc20a6aVirustotal results 39/65 (60.00%) 105.224.170.3580Heodo
2019-03-11 21:06:20ee4b5bc3113c700295ceaf331bb56680Virustotal results 15/60 (25.00%) 105.224.170.3580Heodo
2019-03-11 20:27:5674f443791375b64d0a552c2c797f9467Virustotal results 14/70 (20.00%) 105.224.170.3580Heodo
2019-03-11 20:20:21276cbf118a0f6b429af5582634beba7cVirustotal results 12/65 (18.46%) 105.224.170.3580Heodo
2019-03-11 20:13:489704109777fb739f576ffc228f6a53eeVirustotal results 14/65 (21.54%) 105.224.170.3580Heodo
2019-03-11 20:08:20a2873303c54b1c604ada27c88eb1c816Virustotal results 20/66 (30.30%) 105.224.170.3580Heodo
2019-03-11 19:53:12d3c328ff792723b2c3613dc0d32a2372Virustotal results 17/69 (24.64%) 105.224.170.3580Heodo
2019-03-11 19:43:16768e5f4fa7c1ddb6c48f3edafd82b626Virustotal results 13/65 (20.00%) 105.224.170.3580Heodo
2019-03-11 19:41:486cd00c363ad8fae20d81b8490df54086Virustotal results 14/71 (19.72%) 105.224.170.3580Heodo
2019-03-11 19:35:59dfd9fdaa305a31c220d680e50c26ca51Virustotal results 23/71 (32.39%) 105.224.170.3580Heodo
2019-03-11 18:06:4659443af5a355ec501f50937551b182d1Virustotal results 33/54 (61.11%) 105.224.170.3580Heodo

# of malware samples: 31