Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 109.236.109.159. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:109.236.109.159
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8359
AS name:MTS
Country:- RU
First seen:2020-01-28 15:47:40 UTC
Last seen:2020-03-23 10:37:29 UTC
Last online:2020-04-06

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-26 18:46:32388d43258d2901189fb31fa5296688d0Virustotal results 5 / 72 (6.94%) 109.236.109.1598080Heodo
2020-03-23 10:54:2668359f797ea4f84edc41ddb3845e4f65n/a109.236.109.1598080Heodo
2020-03-22 23:17:09dbb291d5dfe8ccd9044c6ac4ca63146aVirustotal results 23 / 72 (31.94%) 109.236.109.1598080Heodo
2020-03-21 09:45:5715ccac09e7d56fab931ac3de39c723dan/a109.236.109.1598080Heodo
2020-03-21 08:52:36fd762c6744fe93db1640d90bb3280cd7n/a109.236.109.1598080Heodo
2020-03-21 08:18:07db4bf65fdc4c24db40de8a70f1805fd5n/a109.236.109.1598080Heodo
2020-02-01 07:59:05be871971c6354ecfa14b73bd3149024aVirustotal results 34 / 73 (46.58%) 109.236.109.1598080Heodo
2020-02-01 07:55:141b710ad9d6636296f92895dbc1417a76Virustotal results 7 / 72 (9.72%) 109.236.109.1598080Heodo
2020-02-01 07:53:040acb549dfce70b19909c7cb7303cba4aVirustotal results 11 / 71 (15.49%) 109.236.109.1598080Heodo
2020-02-01 07:48:20d70e6dcff250de22149d78a419ccab94Virustotal results 7 / 72 (9.72%) 109.236.109.1598080Heodo
2020-02-01 07:48:011a7c6918a00f974ba96c2a55fbfa0dbaVirustotal results 34 / 73 (46.58%) 109.236.109.1598080Heodo
2020-02-01 07:47:17f347742fe5d9ad924a8f5f31d3a7cc91Virustotal results 36 / 72 (50.00%) 109.236.109.1598080Heodo
2020-02-01 07:46:544bae3c855f072623c5f5f643aec42930Virustotal results 35 / 71 (49.30%) 109.236.109.1598080Heodo
2020-02-01 07:46:22b9a67296c8a04a546b36d407c4992b7aVirustotal results 35 / 72 (48.61%) 109.236.109.1598080Heodo
2020-02-01 07:39:2397ff807bde71d373fc0717c244695bc0Virustotal results 32 / 71 (45.07%) 109.236.109.1598080Heodo
2020-02-01 07:39:05141bb53a94595d0ef3d7c0c6713224a6Virustotal results 33 / 69 (47.83%) 109.236.109.1598080Heodo
2020-02-01 07:37:2430f9c8d50fc7ebdb0d137265bbd99137Virustotal results 27 / 73 (36.99%) 109.236.109.1598080Heodo
2020-02-01 07:36:387771cc24cfeb5eefc95a3e07067d6959Virustotal results 33 / 72 (45.83%) 109.236.109.1598080Heodo
2020-02-01 07:32:28fb82e5805d868eecf96165a80143977bVirustotal results 31 / 71 (43.66%) 109.236.109.1598080Heodo
2020-02-01 07:29:037907f31b0476720e147b5c818f4880ffVirustotal results 33 / 71 (46.48%) 109.236.109.1598080Heodo
2020-02-01 07:25:312b49f60222e274ca88ed2bbe7de38908Virustotal results 34 / 71 (47.89%) 109.236.109.1598080Heodo
2020-02-01 07:06:1160c73686d36a2aea0f537e68e43bb46fVirustotal results 34 / 72 (47.22%) 109.236.109.1598080Heodo
2020-02-01 07:01:0457bd5f7e0b6442b53d9ab47fbfebd223Virustotal results 34 / 72 (47.22%) 109.236.109.1598080Heodo
2020-02-01 06:50:10fdcee65a95a9285784193ad2ff2e597dVirustotal results 34 / 72 (47.22%) 109.236.109.1598080Heodo
2020-01-29 10:32:56a258ee4a5a76213d8b063fde9d5559a9n/a109.236.109.1598080Heodo
2020-01-28 22:07:17e56690f5ccd6ba23d4a7e29c51f16134n/a109.236.109.1598080Heodo
2020-01-28 15:56:281e1ede8c22652c4fd2467c2a21ffeb23Virustotal results 15 / 62 (24.19%) 109.236.109.1598080Heodo

# of malware samples: 27