Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 130.241.16.154. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:130.241.16.154
Hostname:ub016154.ub.gu.se
Status:Offline
Spamhaus SBL:SBL427109
Malware:Heodo -
AS number:AS2842
AS name:n/a
Country:- SE
First seen:2018-12-17 20:52:49 UTC
Last seen:2019-01-08 09:27:46 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 16:40:11202bab72146ceafcfb82ae2d3c9fb795Virustotal results 17/71 (23.94%) 130.241.16.15480Heodo
2019-01-08 12:52:19e054dcf1951a0814de5e36b67bc9b21aVirustotal results 47/68 (69.12%) 130.241.16.15480Heodo
2019-01-08 12:49:576b56800a192bf80d4cfd6aa2ed2437bcVirustotal results 45/69 (65.22%) 130.241.16.15480Heodo
2019-01-08 11:31:189eebe2348376543dbad35eb393793020Virustotal results 19/69 (27.54%) 130.241.16.15480Heodo
2019-01-08 10:23:1995aa04ca201b78dc55f2aab49c27d6b0Virustotal results 49/70 (70.00%) 130.241.16.15480Heodo
2019-01-08 08:53:56afb1183c82aadcfe1bea527e991bb8b0Virustotal results 50/72 (69.44%) 130.241.16.15480Heodo
2018-12-19 17:12:1588b34c952ed29065d4c0fef29c2ab626Virustotal results 41/60 (68.33%) 130.241.16.15480Heodo
2018-12-19 17:04:44783ca874aea1fd745f3b7b97a1a172d7Virustotal results 42/58 (72.41%) 130.241.16.15480Heodo
2018-12-19 16:50:3340b0a8f6e1fb038194959624a03b85a8Virustotal results 17/70 (24.29%) 130.241.16.15480Heodo
2018-12-19 16:50:3340b0a8f6e1fb038194959624a03b85a8Virustotal results 17/70 (24.29%) 130.241.16.15480Heodo
2018-12-19 16:24:09dd52f9570b5575343cf63e0afed2b902Virustotal results 16/59 (27.12%) 130.241.16.15480Heodo
2018-12-19 16:14:29d05b303c9ab23b89c2cffcb0ef296020Virustotal results 40/60 (66.67%) 130.241.16.15480Heodo
2018-12-19 16:03:059f5467a5041267dce8e6b9f9ddbf71f5Virustotal results 15/61 (24.59%) 130.241.16.15480Heodo
2018-12-19 15:52:032e588a8ea7156f1e1d7324a8004f94baVirustotal results 15/61 (24.59%) 130.241.16.15480Heodo
2018-12-19 15:35:461034168677a3243e03067786288d9f65Virustotal results 20/71 (28.17%) 130.241.16.15480Heodo
2018-12-19 15:12:43b9fd10e2b45ad2c43ef58d70dcc95b47Virustotal results 15/59 (25.42%) 130.241.16.15480Heodo
2018-12-19 14:55:309c768e400aecb0f694ecd9e953f0b4c5Virustotal results 19/70 (27.14%) 130.241.16.15480Heodo
2018-12-19 14:55:309c768e400aecb0f694ecd9e953f0b4c5Virustotal results 19/70 (27.14%) 130.241.16.15480Heodo
2018-12-19 13:29:11d04ecd5458f0bab24450d66e9cb8c0dfVirustotal results 18/71 (25.35%) 130.241.16.15480Heodo
2018-12-19 12:15:313ec56f5680df17756120eec672aa0afaVirustotal results 16/70 (22.86%) 130.241.16.15480Heodo
2018-12-19 11:42:566a44fef37653f85ce705c26bffc4213aVirustotal results 21/71 (29.58%) 130.241.16.15480Heodo
2018-12-19 10:31:06c0c8db2d89297392858ca95d151bdfbcVirustotal results 38/59 (64.41%) 130.241.16.15480Heodo
2018-12-19 10:06:162aba1efb7ca912abc40f05e30f155eb0Virustotal results 14/58 (24.14%) 130.241.16.15480Heodo
2018-12-19 09:24:518f002d4e445b790dae52d30bf7ba77b0Virustotal results 14/58 (24.14%) 130.241.16.15480Heodo
2018-12-19 09:18:482f1d351d0298c19edb25b3da55256aafVirustotal results 17/58 (29.31%) 130.241.16.15480Heodo
2018-12-19 08:22:24fe48b8820909d32094c713e5c25b709dVirustotal results 32/59 (54.24%) 130.241.16.15480Heodo
2018-12-19 07:53:357597ed8fe3ff01e871c3d5ef28488fb4Virustotal results 12/60 (20.00%) 130.241.16.15480Heodo
2018-12-18 11:17:122bdd528f5ab7e6f351f81e269b8f3f75Virustotal results 44/58 (75.86%) 130.241.16.15480Heodo
2018-12-18 09:23:50f4868c78f5b1394f9f5b99ddf118e4e1Virustotal results 15/68 (22.06%) 130.241.16.15480Heodo
2018-12-18 02:29:353b3a332694ec943e9e0238a9885ef91aVirustotal results 50/70 (71.43%) 130.241.16.15480Heodo
2018-12-17 23:01:22dfb5342ec1eeea358312689522c17b54Virustotal results 14/68 (20.59%) 130.241.16.15480Heodo
2018-12-17 22:51:221d7aa92e99b85fe23b3323dc15453cc9Virustotal results 21/60 (35.00%) 130.241.16.15480Heodo

# of malware samples: 32