Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 152.170.220.95. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:152.170.220.95
Hostname:95-220-170-152.fibertel.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10318
AS name:CABLEVISION S.A.
Country:- AR
First seen:2019-10-01 12:24:54 UTC
Last seen:2019-11-16 04:17:37 UTC
Last online:2019-10-29

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-16 04:35:04124613478f586dc42cfe5975873e482dVirustotal results 13 / 69 (18.84%) 152.170.220.9580Heodo
2019-11-15 21:39:26a91a216fbce3791c8cd68fae74c46a1bVirustotal results 50 / 72 (69.44%) 152.170.220.9580Heodo
2019-11-09 03:36:57459008966849f69681b06bb39df3b3ceVirustotal results 14 / 71 (19.72%) 152.170.220.9580Heodo
2019-11-09 03:36:33c7d0767fed36679e580b8e7657f09192Virustotal results 16 / 72 (22.22%) 152.170.220.9580Heodo
2019-11-09 03:36:12e3e634483c6fe1e8fbcc70793dd07a1fVirustotal results 36 / 71 (50.70%) 152.170.220.9580Heodo
2019-11-09 03:24:221f9c4e75a8e71a25c9ee3cde99c2f76eVirustotal results 44 / 70 (62.86%) 152.170.220.9580Heodo
2019-11-09 03:03:36dc7a9968a439a665edbcab09a699f708Virustotal results 12 / 71 (16.90%) 152.170.220.9580Heodo
2019-11-03 23:07:2684f4d4c2b2aa6716f5e03353b335edd2Virustotal results 50/68 (73.53%) 152.170.220.9580Heodo
2019-11-03 18:16:3891af8824afc595016e89180a96ac2af9Virustotal results 16 / 64 (25.00%) 152.170.220.9580Heodo
2019-11-02 03:31:53c95dc2752c23bc252a234a2e46cf5cbbVirustotal results 14 / 71 (19.72%) 152.170.220.9580Heodo
2019-11-02 03:16:0396cd9e7387c29e16261e7da15e31f202Virustotal results 10 / 69 (14.49%) 152.170.220.9580Heodo
2019-11-02 02:10:3980bf1f1227dd58ed1738c163dc9b2b44Virustotal results 39 / 70 (55.71%) 152.170.220.9580Heodo
2019-11-02 01:52:536f3acc187bccb6788e3011cd51d01b26Virustotal results 10 / 68 (14.71%) 152.170.220.9580Heodo
2019-10-31 16:59:590cf4f090b5c1fb3729966b17c3c526f4Virustotal results 41 / 68 (60.29%) 152.170.220.9580Heodo
2019-10-31 06:39:4623bfab023c0eb8c15d5664ec48732010Virustotal results 14 / 68 (20.59%) 152.170.220.9580Heodo
2019-10-30 14:20:54ec2594db77b2de3a2bfab19dcaa1c148Virustotal results 15/69 (21.74%) 152.170.220.9580Heodo
2019-10-30 14:02:35fad1ed6f20c22f0482754dc585d14267Virustotal results 12 / 70 (17.14%) 152.170.220.9580Heodo
2019-10-30 07:53:4036d03f837c3e63d7949df4e257e883bbVirustotal results 16 / 70 (22.86%) 152.170.220.9580Heodo
2019-10-30 07:27:111134e3b311d402a4334890b3fd9df1a3Virustotal results 17 / 70 (24.29%) 152.170.220.9580Heodo
2019-10-29 06:17:1046a3901fb990e5cce5f7039deb364340Virustotal results 10 / 70 (14.29%) 152.170.220.9580Heodo
2019-10-28 18:07:1115bd578bccc645ef112ee382448ed186n/a152.170.220.9580Heodo
2019-10-02 03:07:012b686c130cd8e874b72095b0d29a3ba1Virustotal results 14 / 57 (24.56%) 152.170.220.9580Heodo
2019-10-01 16:50:2092ee3fd38c1cae374fbfd9e1076b7cd2Virustotal results 25 / 60 (41.67%) 152.170.220.9580Heodo
2019-10-01 12:35:31f0614302c300186d829984bb0791d826Virustotal results 10 / 71 (14.08%) 152.170.220.9580TrickBot

# of malware samples: 24