Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 153.133.224.78. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:153.133.224.78
Hostname:p391078-ipngn200201takamatu.kagawa.ocn.ne.jp
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4713
AS name:OCN NTT Communications Corporation
Country:- JP
First seen:2020-06-09 20:42:03 UTC
Last seen:2020-07-06 15:33:41 UTC
Last online:2020-06-26

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-07-07 05:28:18a168a33111f2022b7f159e65e00249cbVirustotal results 10 / 71 (14.08%) 153.133.224.7880Heodo
2020-06-30 09:58:50bd6e301c6e7ab4ebeec8a9cd16a7913dVirustotal results 27 / 74 (36.49%) 153.133.224.7880Heodo
2020-06-28 05:07:3411ad1cc7042850cd194f2d6f4dcc2261Virustotal results 9 / 72 (12.50%) 153.133.224.7880Heodo
2020-06-25 22:12:1916dc4940f5b7be328dc829d73fbdbd12Virustotal results 21 / 73 (28.77%) 153.133.224.7880Heodo
2020-06-25 13:35:428066161e34e6b90559133afa8aea3c30Virustotal results 40 / 73 (54.79%) 153.133.224.7880Heodo
2020-06-24 20:29:012e78934aa286af10ad2ba57bdaeeb4a9Virustotal results 38 / 73 (52.05%) 153.133.224.7880Heodo
2020-06-21 01:07:51d4bd9efde175ca1eb3e204e1faf9a638n/a153.133.224.7880Heodo
2020-06-11 16:53:3658cc2a9b2cace0f51fa5d72ae7bbe85eVirustotal results 49 / 72 (68.06%) 153.133.224.7880Heodo
2020-06-11 16:42:3257ae64b585210a676b60652d25f72623Virustotal results 47 / 72 (65.28%) 153.133.224.7880Heodo

# of malware samples: 9