Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 12.149.72.170. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:12.149.72.170
Hostname:n/a
Status:Offline
Spamhaus SBL:SBL409862
Malware:Heodo -
AS number:AS7018
AS name:ATT-INTERNET4 - AT&T Services, Inc., US
Country:- US
First seen:2018-06-28 06:20:37 UTC
Last seen:2018-07-06 22:34:28 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-08-25 00:37:190057818390f66c5f166342ecd8194539Virustotal results 37/68 (54.41%) 12.149.72.17080Heodo
2018-08-04 01:13:516cd850790edbca8979b8da2fb302e3f6Virustotal results 42/68 (61.76%) 12.149.72.17080Heodo
2018-08-04 01:13:516cd850790edbca8979b8da2fb302e3f6Virustotal results 42/68 (61.76%) 12.149.72.17080Heodo
2018-07-19 13:23:557c16cfc5079c43232e56e22e7d82c544Virustotal results 42/65 (64.62%) 12.149.72.17080Heodo
2018-07-19 13:23:557c16cfc5079c43232e56e22e7d82c544Virustotal results 42/65 (64.62%) 12.149.72.17080Heodo
2018-07-13 11:51:06a008c392fdf40e774f9faa4e291303bfVirustotal results 44/68 (64.71%) 12.149.72.17080Heodo
2018-07-07 03:12:21e2ef8721b821acc49fad6bd828ec0381Virustotal results 17/68 (25.00%) 12.149.72.17080Heodo
2018-07-07 03:12:21e2ef8721b821acc49fad6bd828ec0381Virustotal results 17/68 (25.00%) 12.149.72.17080Heodo
2018-07-06 22:34:283f99d8d41b78c8ef8f1bb2e540bee4a3Virustotal results 43/64 (67.19%) 12.149.72.17080Heodo
2018-07-06 22:34:283f99d8d41b78c8ef8f1bb2e540bee4a3Virustotal results 43/64 (67.19%) 12.149.72.17080Heodo
2018-07-05 03:28:5934cc8d5acea2420c3be041c64ac15621Virustotal results 17/64 (26.56%) 12.149.72.17080Heodo
2018-07-05 00:25:28d20c4f9af95a4211e3b235580c8ab606Virustotal results 37/64 (57.81%) 12.149.72.17080Heodo
2018-07-04 19:47:22fe53a2559c1e16ace5586cf6e7df0052Virustotal results 31/67 (46.27%) 12.149.72.17080Heodo
2018-07-04 10:28:4715b60e08137594ec9de7cfce8aab90b9Virustotal results 11/63 (17.46%) 12.149.72.17080Heodo
2018-07-04 08:14:1398d821391187348cf73ac4de73544eddVirustotal results 11/63 (17.46%) 12.149.72.17080Heodo
2018-07-04 07:51:21b53b26de15d2bc42ccde9e4888286ad7Virustotal results 17/64 (26.56%) 12.149.72.17080Heodo
2018-07-04 04:39:59b6a1677729583734ce79eaa37d1bf8f8Virustotal results 39/64 (60.94%) 12.149.72.17080Heodo
2018-07-04 03:11:1055af46a0d9b1e5ebbb269a52395d6d3cVirustotal results 11/64 (17.19%) 12.149.72.17080Heodo
2018-07-04 02:41:3291f0635aa02bb198413c7c61abb5491cVirustotal results 32/64 (50.00%) 12.149.72.17080Heodo
2018-07-03 17:19:20f0bb506337373e33321eb5ffa1bf4f7fVirustotal results 16/64 (25.00%) 12.149.72.17080Heodo
2018-07-03 11:29:36eb102bb2ff64744f1e5e3c30569daf69Virustotal results 11/63 (17.46%) 12.149.72.17080Heodo
2018-07-03 10:33:3858d719850656377990b757ff1d065d33Virustotal results 35/67 (52.24%) 12.149.72.17080Heodo
2018-07-03 10:30:2722336988a5ebc19cf8ebf30acd7a5d83Virustotal results 21/64 (32.81%) 12.149.72.17080Heodo
2018-07-03 09:48:3633d0120d7a52940c942f07a2c5583a76Virustotal results 36/67 (53.73%) 12.149.72.17080Heodo
2018-07-03 09:30:348dbb6fdd8469a42446705982c7a72aa1Virustotal results 43/64 (67.19%) 12.149.72.17080Heodo
2018-07-03 06:50:03c3c97c0860013c351a939a9c63cb642eVirustotal results 20/64 (31.25%) 12.149.72.17080Heodo
2018-07-02 21:13:18626aa6be34291b2af779d7338243a225Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-07-02 16:59:00d9fccb1b1418197d74573b7248de1bc6Virustotal results 15/63 (23.81%) 12.149.72.17080Heodo
2018-07-02 16:20:17b37590842c0815a7d555ab47c9f6c0b1Virustotal results 47/64 (73.44%) 12.149.72.17080Heodo
2018-07-02 15:15:020719d14796382b624f5d120670259d41Virustotal results 10/64 (15.62%) 12.149.72.17080Heodo
2018-07-02 14:27:40976fbf4eaa989cb629eadfef2dd3d748Virustotal results 30/66 (45.45%) 12.149.72.17080Heodo
2018-07-02 13:13:56c54d9edf77bbcd053f0bcb20a18c63c4Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-07-02 12:57:08c7bbb98184261542601a372bc3fe0b9bVirustotal results 16/64 (25.00%) 12.149.72.17080Heodo
2018-07-02 11:53:00b229752011d452dfea04e69a8ba0d807Virustotal results 17/63 (26.98%) 12.149.72.17080Heodo
2018-07-02 09:05:363e757b3fd4226aff15c50928f92f6d3bVirustotal results 13/64 (20.31%) 12.149.72.17080Heodo
2018-07-02 08:34:089fd6185f389a55ebfc1616849aa89e35Virustotal results 37/64 (57.81%) 12.149.72.17080Heodo
2018-07-02 08:30:3988ee768ff3f979a69ffc5bdd84a9fa4fVirustotal results 17/64 (26.56%) 12.149.72.17080Heodo
2018-07-02 08:13:20f555c5148ed4619cf17fc2a729598953Virustotal results 19/64 (29.69%) 12.149.72.17080Heodo
2018-07-02 08:11:251bb4de12c2d07e4598e81fe445efdc81Virustotal results 26/64 (40.62%) 12.149.72.17080Fuery
2018-07-02 07:53:509588a4eb96795dfbec7d093ed94b454fVirustotal results 18/64 (28.12%) 12.149.72.17080Heodo
2018-07-02 07:04:525d4e87c28abc0ec20105e2b0fe40a642Virustotal results 12/64 (18.75%) 12.149.72.17080Heodo
2018-07-02 06:33:21e791d83b894392bdf1a76a4ad3513f62Virustotal results 11/64 (17.19%) 12.149.72.17080Heodo
2018-06-30 07:09:46597f730bb6834b839c4341f50182c06aVirustotal results 22/64 (34.38%) 12.149.72.17080Heodo
2018-06-29 13:38:20526c72539ede8c9ee2f0acc111aa0ea5Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-29 11:50:31d3f31589959e0cffc5bb67bce8676f52Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-29 11:50:31d3f31589959e0cffc5bb67bce8676f52Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-29 10:26:3365ad1379af4a2edd7ed8705a1ea754e6Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-06-29 10:26:3365ad1379af4a2edd7ed8705a1ea754e6Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-06-29 10:19:09419052a9d5c19f9cd0f667e77f8ad6faVirustotal results 18/67 (26.87%) 12.149.72.17080Fuery
2018-06-29 09:26:428249d414627d3dde168318c92a63f74aVirustotal results 32/68 (47.06%) 12.149.72.17080Heodo
2018-06-29 09:26:428249d414627d3dde168318c92a63f74aVirustotal results 32/68 (47.06%) 12.149.72.17080Heodo
2018-06-29 08:19:359553f8840b69c8b2ff32906f930e99a3Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-29 05:50:10674f4aa77af4defb857aaba42fbfb179Virustotal results 22/67 (32.84%) 12.149.72.17080Heodo
2018-06-29 05:36:24bfad199286099bbb4f9089aa36652c7aVirustotal results 20/67 (29.85%) 12.149.72.17080Heodo
2018-06-29 05:36:24bfad199286099bbb4f9089aa36652c7aVirustotal results 20/67 (29.85%) 12.149.72.17080Heodo
2018-06-29 05:31:50bfd2a5b12169d9836ec6b030191566fdVirustotal results 14/68 (20.59%) 12.149.72.17080Heodo
2018-06-28 19:08:2412e9ec77d630b79f9ed406de309a658bVirustotal results 28/67 (41.79%) 12.149.72.17080Heodo
2018-06-28 19:08:2412e9ec77d630b79f9ed406de309a658bVirustotal results 28/67 (41.79%) 12.149.72.17080Heodo
2018-06-28 13:38:483b3ffe31667979aa7d8563586463e9b1Virustotal results 12/68 (17.65%) 12.149.72.17080Heodo
2018-06-28 13:38:483b3ffe31667979aa7d8563586463e9b1Virustotal results 12/68 (17.65%) 12.149.72.17080Heodo
2018-06-28 11:39:13a6cddc56cdbbd5a89aa509b832d05dc4Virustotal results 27/68 (39.71%) 12.149.72.17080Heodo
2018-06-28 11:39:13a6cddc56cdbbd5a89aa509b832d05dc4Virustotal results 27/68 (39.71%) 12.149.72.17080Heodo
2018-06-28 11:25:545c11ee5d80a785a9cdf0d8e89eb57925Virustotal results 40/64 (62.50%) 12.149.72.17080Heodo
2018-06-28 11:25:545c11ee5d80a785a9cdf0d8e89eb57925Virustotal results 40/64 (62.50%) 12.149.72.17080Heodo
2018-06-28 08:51:056f772f47e5b17b1ed109ecc5984ff05aVirustotal results 30/68 (44.12%) 12.149.72.17080Heodo
2018-06-28 08:51:056f772f47e5b17b1ed109ecc5984ff05aVirustotal results 30/68 (44.12%) 12.149.72.17080Heodo
2018-06-28 07:16:5615748da5ae056d2aef4495fff7637adfVirustotal results 22/68 (32.35%) 12.149.72.17080Heodo
2018-06-28 07:16:5615748da5ae056d2aef4495fff7637adfVirustotal results 22/68 (32.35%) 12.149.72.17080Heodo
2018-06-28 07:16:0324e3488ab999e8d488d1784a50a0c8a8Virustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-28 07:16:0324e3488ab999e8d488d1784a50a0c8a8Virustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-28 06:32:15f874c81840becdff1852f1d86187062eVirustotal results 19/68 (27.94%) 12.149.72.17080Heodo
2018-06-28 06:32:15f874c81840becdff1852f1d86187062eVirustotal results 19/68 (27.94%) 12.149.72.17080Heodo
2018-06-28 05:28:4488a0536eac6d9e6f9d936732a7a01b0fVirustotal results 33/68 (48.53%) 12.149.72.17080Heodo
2018-06-28 05:28:4488a0536eac6d9e6f9d936732a7a01b0fVirustotal results 33/68 (48.53%) 12.149.72.17080Heodo
2018-06-27 15:30:289bc039a82fb606f7a108cd7dd5995d36Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-27 15:30:289bc039a82fb606f7a108cd7dd5995d36Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-27 15:20:4373531fc9861946c1746505bf6001a133Virustotal results 24/67 (35.82%) 12.149.72.17080Heodo
2018-06-27 15:20:4373531fc9861946c1746505bf6001a133Virustotal results 24/67 (35.82%) 12.149.72.17080Heodo
2018-06-27 14:27:470b04b1fa8cf302c95369cbe514cd77c4Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-27 14:27:470b04b1fa8cf302c95369cbe514cd77c4Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-27 13:51:3665c53a6cc607ad8b09d15ad57c585328Virustotal results 11/68 (16.18%) 12.149.72.17080Heodo
2018-06-27 13:51:3665c53a6cc607ad8b09d15ad57c585328Virustotal results 11/68 (16.18%) 12.149.72.17080Heodo
2018-06-27 13:50:273d9c47b72beea5241c73a085c4d76a40Virustotal results 18/68 (26.47%) 12.149.72.17080Heodo
2018-06-27 13:50:273d9c47b72beea5241c73a085c4d76a40Virustotal results 18/68 (26.47%) 12.149.72.17080Heodo
2018-06-27 13:46:12485a84bd470afa290e406fac768f99ebVirustotal results 22/67 (32.84%) 12.149.72.17080Heodo
2018-06-27 13:46:12485a84bd470afa290e406fac768f99ebVirustotal results 22/67 (32.84%) 12.149.72.17080Heodo
2018-06-27 13:42:398a1e64a9aabf40781d0ea48a682944e1Virustotal results 25/67 (37.31%) 12.149.72.17080Heodo
2018-06-27 13:42:398a1e64a9aabf40781d0ea48a682944e1Virustotal results 25/67 (37.31%) 12.149.72.17080Heodo
2018-06-27 13:34:47eb7b9880c5bca3e54858a9f328468dedVirustotal results 48/64 (75.00%) 12.149.72.17080Heodo
2018-06-27 13:34:47eb7b9880c5bca3e54858a9f328468dedVirustotal results 48/64 (75.00%) 12.149.72.17080Heodo
2018-06-27 08:24:254cab8b64b43ff48e864fb747e4686496Virustotal results 16/68 (23.53%) 12.149.72.17080Heodo
2018-06-27 08:24:254cab8b64b43ff48e864fb747e4686496Virustotal results 16/68 (23.53%) 12.149.72.17080Heodo
2018-06-27 07:07:479f0b1e5011968731aa2a4e880a246bacVirustotal results 25/68 (36.76%) 12.149.72.17080Heodo
2018-06-27 07:07:479f0b1e5011968731aa2a4e880a246bacVirustotal results 25/68 (36.76%) 12.149.72.17080Heodo
2018-06-26 20:01:56f56bb9fbff17f5e7672de0d02fe8d3f9Virustotal results 17/66 (25.76%) 12.149.72.17080Heodo
2018-06-26 20:01:56f56bb9fbff17f5e7672de0d02fe8d3f9Virustotal results 17/66 (25.76%) 12.149.72.17080Heodo
2018-06-26 19:44:47934d45205d730de3a380d75de1c5f80aVirustotal results 17/68 (25.00%) 12.149.72.17080Heodo
2018-06-26 19:44:47934d45205d730de3a380d75de1c5f80aVirustotal results 17/68 (25.00%) 12.149.72.17080Heodo
2018-06-26 19:37:04e98fd69a588c3ac659df22b17fb6a992Virustotal results 14/68 (20.59%) 12.149.72.17080Heodo
2018-06-26 19:37:04e98fd69a588c3ac659df22b17fb6a992Virustotal results 14/68 (20.59%) 12.149.72.17080Heodo
2018-06-26 19:34:28e71d73cd65906012421979ae01cbc7daVirustotal results 15/66 (22.73%) 12.149.72.17080Heodo
2018-06-26 19:34:28e71d73cd65906012421979ae01cbc7daVirustotal results 15/66 (22.73%) 12.149.72.17080Heodo
2018-06-26 18:28:42966601825f1c1c98c31bd67d9730667bVirustotal results 19/67 (28.36%) 12.149.72.17080Heodo
2018-06-26 18:28:42966601825f1c1c98c31bd67d9730667bVirustotal results 19/67 (28.36%) 12.149.72.17080Heodo
2018-06-26 16:24:44e6388414ccf3932752d5cf2301a4edbfVirustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-26 16:24:44e6388414ccf3932752d5cf2301a4edbfVirustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-26 13:51:31910ffd5514eb9bd6d3fc6cb584e13731Virustotal results 35/68 (51.47%) 12.149.72.17080Heodo
2018-06-26 13:51:31910ffd5514eb9bd6d3fc6cb584e13731Virustotal results 35/68 (51.47%) 12.149.72.17080Heodo
2018-06-26 13:42:27eb94ccfa5aac45223815e1a115e14842Virustotal results 15/68 (22.06%) 12.149.72.17080Heodo
2018-06-26 13:42:27eb94ccfa5aac45223815e1a115e14842Virustotal results 15/68 (22.06%) 12.149.72.17080Heodo
2018-06-26 08:26:0565f758c596adfbee5fa2390f6bb97b96Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-06-26 08:26:0565f758c596adfbee5fa2390f6bb97b96Virustotal results 18/67 (26.87%) 12.149.72.17080Heodo
2018-06-26 07:30:207afad1713bfc5c6041be418c98e55053Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-26 07:30:207afad1713bfc5c6041be418c98e55053Virustotal results 21/67 (31.34%) 12.149.72.17080Heodo
2018-06-26 01:12:48bc1a4dc38f3236982d47496a1151f33fVirustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-26 01:12:48bc1a4dc38f3236982d47496a1151f33fVirustotal results 13/68 (19.12%) 12.149.72.17080Heodo
2018-06-25 13:57:07f9e59f9b7cac5d9e85a67e27a78a1a27Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-25 13:57:07f9e59f9b7cac5d9e85a67e27a78a1a27Virustotal results 17/67 (25.37%) 12.149.72.17080Heodo
2018-06-25 12:29:518975bfe20f4b9565be5c7165cb65a344Virustotal results 24/68 (35.29%) 12.149.72.17080Heodo
2018-06-25 12:29:518975bfe20f4b9565be5c7165cb65a344Virustotal results 24/68 (35.29%) 12.149.72.17080Heodo
2018-06-24 06:59:0657a8de378eca755ef3d46091a546280eVirustotal results 8/67 (11.94%) 12.149.72.17080Heodo
2018-06-24 06:59:0657a8de378eca755ef3d46091a546280eVirustotal results 8/67 (11.94%) 12.149.72.17080Heodo
2018-06-23 11:14:25a536e8f4fe7b0d0bf6dcc10a74b112bcVirustotal results 16/68 (23.53%) 12.149.72.17080Heodo
2018-06-23 11:14:25a536e8f4fe7b0d0bf6dcc10a74b112bcVirustotal results 16/68 (23.53%) 12.149.72.17080Heodo

# of malware samples: 124