Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 172.90.70.168. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:172.90.70.168
Hostname:cpe-172-90-70-168.socal.res.rr.com
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS20001
AS name:TWC-20001-PACWEST - Charter Communications Inc
Country:- US
First seen:2019-11-30 02:01:59 UTC
Last seen:2019-12-06 01:20:05 UTC
Last online:2019-12-06

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-06 01:41:24b8f3060c424061e0726619f2b503d581n/a172.90.70.168443Heodo
2019-12-04 20:40:46fc23d00e0bec0324ede89d802bacf954Virustotal results 7 / 68 (10.29%) 172.90.70.168443Heodo
2019-12-04 08:48:35f6b614629f7a69d1521135563cfb5461Virustotal results 7/70 (10.00%) 172.90.70.168443Heodo
2019-12-04 06:07:283b3644303050812281ce4e5bd96b7f4dVirustotal results 4 / 71 (5.63%) 172.90.70.168443Heodo
2019-12-04 02:41:312517b8792dff4816f4f2211650391cdbVirustotal results 11 / 71 (15.49%) 172.90.70.168443Heodo
2019-12-03 21:31:2929a60286e4a74aad1f7bab6890d30df1Virustotal results 34/70 (48.57%) 172.90.70.168443Heodo
2019-12-03 21:04:30b845d946da3a6659510d7940c353c02eVirustotal results 8 / 70 (11.43%) 172.90.70.168443Heodo
2019-12-03 15:53:2622e204da368c93252b38a6585e785af3Virustotal results 4 / 71 (5.63%) 172.90.70.168443Heodo
2019-12-03 14:27:5194052da5d5f2ec2df7683c729e51d343Virustotal results 4 / 69 (5.80%) 172.90.70.168443Heodo
2019-12-03 13:54:49238fb77eea6370cacc850cb950f13c55Virustotal results 11 / 69 (15.94%) 172.90.70.168443Heodo
2019-12-03 09:04:2801fe2a29c6fce4b74a824725e688d579Virustotal results 6 / 71 (8.45%) 172.90.70.168443Heodo
2019-12-03 06:39:310b56f8c198c60cd1557e71700dad2920Virustotal results 10 / 71 (14.08%) 172.90.70.168443Heodo
2019-12-02 23:52:02317037552a8a158a50772f031e8da911Virustotal results 7/70 (10.00%) 172.90.70.168443Heodo
2019-12-02 16:40:51ad4387799bd5228f0874833c471b7a92Virustotal results 10 / 70 (14.29%) 172.90.70.168443Heodo
2019-11-30 13:57:45ecba9fe8485aa50ceb8489b97e79a1c4n/a172.90.70.168443Heodo
2019-11-30 02:20:54a6ee450fd4dba2df3cc00b6c01af7968Virustotal results 21 / 60 (35.00%) 172.90.70.168443Heodo

# of malware samples: 16