Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 134.196.53.52. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:134.196.53.52
Hostname:cm-134-196-53-52.revip18.asianet.co.th
Status:Offline
Spamhaus SBL:SBL447174
Malware:Heodo -
AS number:AS17552
AS name:TRUE-AS-AP True Internet Co.,Ltd.
Country:- TH
First seen:2019-05-14 15:10:37 UTC
Last seen:2019-05-17 07:47:54 UTC
Last online:2019-05-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-05-18 12:16:2557c7d23c7e02fd98f97d2627a1722886Virustotal results 52/71 (73.24%) 134.196.53.527080Heodo
2019-05-18 07:02:014afc0066473b587b8491867a0d05e631Virustotal results 33/73 (45.21%) 134.196.53.527080Heodo
2019-05-18 05:54:448c249999a2e3689e662a2a95588da26cVirustotal results 51/72 (70.83%) 134.196.53.527080Heodo
2019-05-15 13:01:19fc0d7889b8e36bc9380f0afe9bf3eb40Virustotal results 21/72 (29.17%) 134.196.53.527080Heodo
2019-05-15 12:44:50708f92e297a109bce2c50f464a180dd6Virustotal results 45/71 (63.38%) 134.196.53.527080Heodo
2019-05-15 12:39:11dfdb009a9f52ca69eb1f38aa12c933c0Virustotal results 8/60 (13.33%) 134.196.53.527080Heodo
2019-05-15 09:41:0826783d253a995a415dbc7da0414257bfVirustotal results 7/60 (11.67%) 134.196.53.527080Heodo
2019-05-15 09:31:06cf3d06591a706bee26a05d85cd61d1f6Virustotal results 7/60 (11.67%) 134.196.53.527080Heodo
2019-05-15 08:19:499de911b20139b44afecb863ddf65bac3Virustotal results 7/60 (11.67%) 134.196.53.527080Heodo
2019-05-15 08:19:2468f77668c569aa8a9f569cdfecedc200Virustotal results 7/60 (11.67%) 134.196.53.527080Heodo
2019-05-15 08:17:006d132f7ed386e77c1dbb8bdc02820698Virustotal results 39/60 (65.00%) 134.196.53.527080Heodo
2019-05-15 01:37:03cb9026e269f6a2bf6db1c923a3451a16Virustotal results 17/72 (23.61%) 134.196.53.527080Heodo
2019-05-14 16:38:524d20dac059d9ee257e7f96e56be49f23Virustotal results 10/60 (16.67%) 134.196.53.527080Heodo
2019-05-14 15:49:4291ad684f6e9b8cd3a64240bee7295d5dVirustotal results 9/60 (15.00%) 134.196.53.527080Heodo
2019-05-14 15:37:39b9b360b4a9dcfa2f919689fa90528308Virustotal results 9/60 (15.00%) 134.196.53.527080Heodo

# of malware samples: 15