Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 118.41.9.171. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:118.41.9.171
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4766
AS name:KIXS-AS-KR Korea Telecom
Country:- KR
First seen:2018-08-30 08:11:58 UTC
Last seen:2019-02-24 17:37:51 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-26 00:29:33020daee57a0fb6cf52e955ea252cb2d7Virustotal results 43/66 (65.15%) 118.41.9.17180Heodo
2019-01-08 20:23:4428648f92ecb19fac08392a8a1b079b8aVirustotal results 49/68 (72.06%) 118.41.9.17180Heodo
2019-01-08 17:15:06d214f50d67235235794193fc7ad6c6edVirustotal results 47/68 (69.12%) 118.41.9.17180Heodo
2019-01-08 13:12:068f15d26b148c77faa1b3e108a7c5709eVirustotal results 51/70 (72.86%) 118.41.9.17180Heodo
2019-01-08 12:43:424ea34ae4dbd0cbba643bf8ce93de83f0Virustotal results 42/68 (61.76%) 118.41.9.17180Heodo

# of malware samples: 5