Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 107.2.2.28. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry

Host:	107.2.2.28
Hostname:	c-107-2-2-28.hsd1.az.comcast.net
Status:	Online
Spamhaus SBL:	Not listed
Malware:	Heodo
AS number:	AS7922
AS name:	COMCAST-7922 - Comcast Cable Communications, LLC
Country:	US
First seen:	2019-11-30 02:56:14 UTC
Last seen:	2019-12-06 01:10:14 UTC
Last online:	2019-12-06

Malware Samples

The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)	Malware Sample (MD5 hash)	VT	Host	Port	Signature
2019-12-06 13:52:52	e515328ee80ad7aa804a2d87b8038790	n/a	107.2.2.28	80	Heodo
2019-12-05 17:25:38	5c09e069273101b73f5abf046eea4b3c	37 / 70 (52.86%)	107.2.2.28	80	Heodo
2019-12-05 09:34:22	df2b78902a448a17a76dd43d7741ec33	10 / 69 (14.49%)	107.2.2.28	80	Heodo
2019-12-05 08:32:43	d6b1d0240b720fb5d02248b92ed75ed2	10 / 70 (14.29%)	107.2.2.28	80	Heodo
2019-12-05 07:50:10	de001611be4231b468305b920168b384	9 / 71 (12.68%)	107.2.2.28	80	Heodo
2019-12-05 07:26:31	e2ea4b5a8c258b02c3fb546de0af9e4f	9 / 70 (12.86%)	107.2.2.28	80	Heodo
2019-12-03 11:17:05	43ec1cad4f10738a32e3edbedfc75dc5	n/a	107.2.2.28	80	Heodo
2019-12-03 11:10:18	5c7be08f2dbbe23e7f1a5740018ca4e8	n/a	107.2.2.28	80	Heodo
2019-12-03 10:48:03	d037a2dd96f45aa327a49a34a84e1268	17 / 59 (28.81%)	107.2.2.28	80	Heodo
2019-12-02 09:49:48	8a6e10580ca8cbc231e6edd00b1448fd	29/60 (48.33%)	107.2.2.28	80	Heodo
2019-12-02 09:40:32	c4eb4a8f2c905f0c1f7af1cb57f905de	18/59 (30.51%)	107.2.2.28	80	Heodo
2019-12-02 09:20:34	419a97e0861ea68cc47cbeb6344b91f5	36/62 (58.06%)	107.2.2.28	80	Heodo
2019-12-02 08:26:55	176df6392b4d733a31349bb8c247a128	10 / 70 (14.29%)	107.2.2.28	80	Heodo
2019-12-02 08:14:57	03048b0025ecf4a22ea9c89b0b723043	15 / 58 (25.86%)	107.2.2.28	80	Heodo
2019-12-02 07:41:04	55b01e27164ae0d1b649b0ac980f2f53	n/a	107.2.2.28	80	Heodo
2019-12-02 06:14:35	c3c86b082ef51b5ff6f0b525c97c5207	n/a	107.2.2.28	80	Heodo
2019-12-02 04:13:00	202763ffbd0da36ad5046ff7dfbbe977	19 / 60 (31.67%)	107.2.2.28	80	Heodo
2019-12-02 01:45:52	a615236440818852d3977c84065cb17d	n/a	107.2.2.28	80	Heodo
2019-12-01 22:43:19	a269cd876fd34aa3fae19af5e53fbe50	37 / 71 (52.11%)	107.2.2.28	80	Heodo
2019-12-01 19:33:46	df59dcaa7f5a3ba35fa4cd79747ba869	n/a	107.2.2.28	80	Heodo
2019-12-01 14:37:03	c16f5a173cf92d73b78f8c6d077eceb6	n/a	107.2.2.28	80	Heodo
2019-12-01 11:06:51	c5577eade640145c5bb3f95217bacc7d	10 / 70 (14.29%)	107.2.2.28	80	Heodo
2019-12-01 10:49:53	9e3eb06fd9b06e901173741c6179f41d	47 / 68 (69.12%)	107.2.2.28	80	Heodo
2019-12-01 10:18:36	738569b0f75a964cfbc1a263628b89e5	27 / 61 (44.26%)	107.2.2.28	80	Heodo
2019-12-01 07:37:57	a1f997a8d9bda0a666398e74fdbd63a2	n/a	107.2.2.28	80	Heodo
2019-12-01 02:05:00	136d23aa7bb941caad7b7e802ba13064	13 / 70 (18.57%)	107.2.2.28	80	Heodo
2019-12-01 01:20:02	430c462203db1adf35cbdfccf9f710bf	29 / 61 (47.54%)	107.2.2.28	80	Heodo
2019-12-01 01:02:07	d7b1ab31ad38840eba1c43226c954970	n/a	107.2.2.28	80	Heodo
2019-12-01 00:36:15	43e503e4c6df4cfc6d580d07519182a7	12 / 70 (17.14%)	107.2.2.28	80	Heodo
2019-11-30 10:02:26	264f3c35283f90ab758d9324fa0d4d9d	n/a	107.2.2.28	80	Heodo
2019-11-30 09:22:24	469c5df4298b29245079065910bcb483	n/a	107.2.2.28	80	Heodo
2019-11-30 07:44:53	0c88bb640b4359fcf2c6e6a1325423f2	n/a	107.2.2.28	80	Heodo
2019-11-30 04:40:46	4077373ec3d79636cbaae3b8ce83ed69	n/a	107.2.2.28	80	Heodo
2019-11-30 04:30:45	395d8eef26cbdabb8ecad6f67efa2f49	n/a	107.2.2.28	80	Heodo

# of malware samples: 34