Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 116.48.138.115. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:116.48.138.115
Hostname:115.138.48.116.static.netvigator.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4760
AS name:HKTIMS-AP HKT Limited
Country:- HK
First seen:2019-11-30 02:32:19 UTC
Last seen:2020-01-25 14:33:24 UTC
Last online:2019-12-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-25 16:10:391e653e1d0fad69776c151fd969af9188Virustotal results 60 / 72 (83.33%) 116.48.138.11580Heodo
2020-01-07 17:23:5757826b66218e6989287094740662c024Virustotal results 62 / 73 (84.93%) 116.48.138.11580Heodo
2020-01-07 15:31:09f8b86ee28088b6d37f492540dfabe958Virustotal results 58 / 72 (80.56%) 116.48.138.11580Heodo
2019-12-11 18:03:13a54e1062beaec284c9186baed325def2n/a116.48.138.11580Heodo

# of malware samples: 4