Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 159.192.229.157. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:159.192.229.157
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS131090
AS name:CAT-IDC-4BYTENET-AS-AP CAT TELECOM Public Company Ltd,CAT
Country:- TH
First seen:2019-05-17 16:26:33 UTC
Last seen:2019-06-13 14:30:40 UTC
Last online:2019-05-18

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-06-13 07:29:186b1e40af1d8d06fff2d4683d95e1a782Virustotal results 58/69 (84.06%) 159.192.229.157143Heodo
2019-05-23 16:44:5933adf7e6ddb0a84f50a2b93bac74d0d7Virustotal results 44/71 (61.97%) 159.192.229.157143Heodo
2019-05-20 14:35:4012bf83cebfe5e3d8c869bc81cccb54bdVirustotal results 46/71 (64.79%) 159.192.229.157143Heodo
2019-05-20 00:35:39094040f453459afce9093e384a9d2212Virustotal results 51/71 (71.83%) 159.192.229.157143Heodo
2019-05-19 13:21:26464c2687937b772b5ed2efb3acf0bd5bVirustotal results 16/68 (23.53%) 159.192.229.157143Heodo
2019-05-18 23:56:38ef1ec938a6f35def6aecac2729f503a3Virustotal results 19/71 (26.76%) 159.192.229.157143Heodo
2019-05-18 13:48:07b9642c28b98544d3f4643b443e385d1dVirustotal results 18/69 (26.09%) 159.192.229.157143Heodo
2019-05-18 06:54:16c320b267ab5ec2ca6ad7afc573f43009Virustotal results 51/73 (69.86%) 159.192.229.157143Heodo
2019-05-17 16:22:0601481f46db055622c6bb55fcff737b3dVirustotal results 55/67 (82.09%) 159.192.229.157143Heodo

# of malware samples: 9