Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 107.185.71.104. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:107.185.71.104
Hostname:cpe-107-185-71-104.socal.res.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS20001
AS name:TWC-20001-PACWEST - Charter Communications Inc
Country:- US
First seen:2018-08-23 05:13:10 UTC
Last seen:2019-01-08 09:15:55 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 22:50:21af20c40377c89da9f7244ef9424bce74Virustotal results 45/68 (66.18%) 107.185.71.10480Heodo
2019-01-08 15:15:232fa1647ccda6d17a3785ca5a6f54d055Virustotal results 43/67 (64.18%) 107.185.71.10480Heodo
2019-01-08 14:16:07ed10739619b3af9e0f3a1fceb1988956Virustotal results 44/68 (64.71%) 107.185.71.10480Heodo
2019-01-08 13:19:31bfed81f76ebc4f21d32498b2ae68d9fcVirustotal results 44/68 (64.71%) 107.185.71.10480Heodo
2019-01-08 13:00:536f400855be3dc3d0e3d452939ea1e61aVirustotal results 45/68 (66.18%) 107.185.71.10480Heodo
2019-01-08 11:00:174a42c34c1998732ab243d44619c3f244Virustotal results 45/68 (66.18%) 107.185.71.10480Heodo
2019-01-08 09:26:45ea87c6575a2e7e2605b8346c1f4ec97bVirustotal results 47/67 (70.15%) 107.185.71.10480Heodo

# of malware samples: 7