Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 119.92.51.40. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:119.92.51.40
Hostname:119.92.51.40.static.pldt.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS9299
AS name:IPG-AS-AP Philippine Long Distance Telephone Company
Country:- PH
First seen:2018-12-06 13:28:33 UTC
Last seen:2019-01-08 07:34:00 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 10:28:1040f73b21f0e7af6d8736a88ff8c0d1b1Virustotal results 48/68 (70.59%) 119.92.51.408080Heodo
2019-01-01 10:20:52f09e61d72f91f95f37b045b81d00b9fcVirustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-23 13:23:460612224f9eb915356afa9e012a695f53Virustotal results 36/59 (61.02%) 119.92.51.408080Heodo
2018-12-23 12:51:10f3a9bbfeef670025e8a1ec547c1aba8dVirustotal results 13/60 (21.67%) 119.92.51.408080Heodo
2018-12-23 12:19:16dd5b6b01acaaf4073a1a34cd2b2f253cVirustotal results 13/59 (22.03%) 119.92.51.408080Heodo
2018-12-23 11:58:53a58824f214a65ff3d247e7c6dc3e1f41Virustotal results 13/59 (22.03%) 119.92.51.408080Heodo
2018-12-23 11:35:34b81d7e8075a9096f12463fa59c22222eVirustotal results 13/56 (23.21%) 119.92.51.408080Heodo
2018-12-23 11:33:02bf9853c22d54e142c566026dc0390c3eVirustotal results 13/60 (21.67%) 119.92.51.408080Heodo
2018-12-23 11:21:06aaafe61ca4e66e1beebc6b69ede6bfafVirustotal results 11/51 (21.57%) 119.92.51.408080Heodo
2018-12-23 11:20:02172a54e8d846425390e4fb6f5ee09556Virustotal results 13/58 (22.41%) 119.92.51.408080Heodo
2018-12-15 19:23:383f0ea81a36b0543f7abaec6e7c480259Virustotal results 40/59 (67.80%) 119.92.51.408080Heodo
2018-12-15 09:26:49bf5371c982f9364cabb8aed1892d3b6cVirustotal results 40/60 (66.67%) 119.92.51.408080Heodo
2018-12-07 08:44:41c71374272fee813c777b6309f2b7985bVirustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-07 08:17:1871ba6e31bfdf4f5bcce46c32d8bab348Virustotal results 32/60 (53.33%) 119.92.51.408080Heodo
2018-12-07 07:00:02a9fc2e3f2214b0a0bbe086ccae159326Virustotal results 18/68 (26.47%) 119.92.51.408080Heodo
2018-12-07 05:53:31708d79f38da2a802ba639162bf811abfVirustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-07 05:48:554778271332e2c110dee3fa5d1d6d0106Virustotal results 21/70 (30.00%) 119.92.51.408080Heodo
2018-12-07 05:48:554778271332e2c110dee3fa5d1d6d0106Virustotal results 21/70 (30.00%) 119.92.51.408080Heodo
2018-12-07 05:05:33ae84ad8b1460e0a948e7fabc8e035809Virustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-07 04:43:3562d385b103d945898afd1406b7b57228Virustotal results 18/60 (30.00%) 119.92.51.408080Heodo
2018-12-07 03:43:50794ecfe699ace583f35691103b3cd815Virustotal results 16/60 (26.67%) 119.92.51.408080Heodo
2018-12-07 03:29:277bca4b7bc06eea4406d0d5d702b1359bVirustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-07 01:48:37f4a861a652131dfd0468ecc2650eb15eVirustotal results 39/60 (65.00%) 119.92.51.408080Heodo
2018-12-07 01:48:37f4a861a652131dfd0468ecc2650eb15eVirustotal results 39/60 (65.00%) 119.92.51.408080Heodo
2018-12-07 01:26:168e04dd9f9eb5713101f9d30208f24ee8Virustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-07 01:09:18b38914d314f5961e070588c0686a4216Virustotal results 18/70 (25.71%) 119.92.51.408080Heodo
2018-12-07 00:57:235c73920368cd27ef0b39eaf83036ccedVirustotal results 16/59 (27.12%) 119.92.51.408080Heodo
2018-12-06 23:48:2574d4d220e989adcbad74695cb614847eVirustotal results 15/59 (25.42%) 119.92.51.408080Heodo
2018-12-06 23:48:2574d4d220e989adcbad74695cb614847eVirustotal results 15/59 (25.42%) 119.92.51.408080Heodo

# of malware samples: 29