Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 168.235.82.183. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:168.235.82.183
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS3842
AS name:RAMNODE
Country:- US
First seen:2019-12-12 21:35:42 UTC
Last seen:2019-12-12 21:35:42 UTC
Last online:2020-01-07

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-12 21:53:01cc159460ad73626d2cf1655ec5d0e14cVirustotal results 15 / 70 (21.43%) 168.235.82.1838080TrickBot
2019-12-12 21:53:01cc159460ad73626d2cf1655ec5d0e14cVirustotal results 15 / 70 (21.43%) 168.235.82.1838080TrickBot
2019-12-12 21:53:01cc159460ad73626d2cf1655ec5d0e14cVirustotal results 15 / 70 (21.43%) 168.235.82.1838080TrickBot
2019-12-12 21:53:01cc159460ad73626d2cf1655ec5d0e14cVirustotal results 15 / 70 (21.43%) 168.235.82.1838080TrickBot

# of malware samples: 4