Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 106.187.91.235. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:106.187.91.235
Hostname:li411-235.members.linode.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS2516
AS name:KDDI KDDI CORPORATION
Country:- JP
First seen:2018-03-01 16:17:23 UTC
Last seen:2019-02-06 10:38:15 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-02 15:42:57a30183350215d9bc1be820f645923c2eVirustotal results 54/71 (76.06%) 106.187.91.2354143Heodo
2019-01-08 19:19:397da01d9fd51f57c56499ffb937b67549Virustotal results 49/68 (72.06%) 106.187.91.2354143
2019-01-08 16:45:08c992becef747566d084fd5a526c54810Virustotal results 52/68 (76.47%) 106.187.91.2354143Heodo

# of malware samples: 3