Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 111.223.147.4. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:111.223.147.4
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS18001
AS name:DIALOG-AS Dialog Axiata PLC.
Country:- LK
First seen:2018-12-13 11:45:35 UTC
Last seen:2018-12-13 18:04:17 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-13 18:13:558b16e7c3f1084839b862daf72b7d3903Virustotal results 15/68 (22.06%) 111.223.147.48080Heodo
2018-12-13 17:23:040271e5d2b140a3d9bb6c8d9f2bfe542dVirustotal results 17/59 (28.81%) 111.223.147.48080Heodo
2018-12-13 16:58:195b3b43761007ac4eea68e976969d1d03Virustotal results 27/71 (38.03%) 111.223.147.48080Heodo
2018-12-13 16:58:195b3b43761007ac4eea68e976969d1d03Virustotal results 27/71 (38.03%) 111.223.147.48080Heodo
2018-12-13 15:27:20747772f2209fabef010a72b2f7e658e7Virustotal results 13/69 (18.84%) 111.223.147.48080Heodo
2018-12-13 14:10:49fa867b3842dca89ce13e1b6bb7a0e88aVirustotal results 14/57 (24.56%) 111.223.147.48080Heodo
2018-12-13 12:03:34db553e6b6bdbae44cc1271aae87c55d4Virustotal results 43/67 (64.18%) 111.223.147.48080Heodo
2018-12-13 12:03:34db553e6b6bdbae44cc1271aae87c55d4Virustotal results 43/67 (64.18%) 111.223.147.48080Heodo

# of malware samples: 8