Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 173.94.9.21. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:173.94.9.21
Hostname:mta-173-94-9-21.triad.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS11426
AS name:SCRR-11426 - Time Warner Cable Internet LLC, US
Country:- US
First seen:2018-10-02 13:17:13 UTC
Last seen:2018-10-03 15:27:34 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 05:36:096a8b2fa4499c0449d8171e2fba3fdc27Virustotal results 49/66 (74.24%) 173.94.9.21443Heodo
2019-01-08 18:02:4105f33042eeb5c63604c856608e7282b2Virustotal results 45/69 (65.22%) 173.94.9.21443Heodo
2019-01-08 17:54:486274efa57ce9dc0df61589b2694e8f44Virustotal results 46/69 (66.67%) 173.94.9.21443Heodo
2019-01-08 16:13:09f6ccd9b87aac3d9aeef2c0c72c554eeaVirustotal results 48/68 (70.59%) 173.94.9.21443Heodo
2019-01-08 12:20:5006673abb3088baf394ba5b938c3ddb9cVirustotal results 46/69 (66.67%) 173.94.9.21443Heodo
2019-01-08 07:40:42090b2edf71088abd015071a57a6e5226Virustotal results 49/69 (71.01%) 173.94.9.21443Heodo
2018-10-05 04:36:2903bd92062787e9bd704a549601791b27Virustotal results 43/69 (62.32%) 173.94.9.21443Heodo
2018-10-03 16:40:591dd958b2ae17d0243a4ad8cd6c1e3240Virustotal results 24/69 (34.78%) 173.94.9.21443Heodo
2018-10-03 16:21:240be8c79832e65096f448c993cc506509Virustotal results 14/68 (20.59%) 173.94.9.21443Heodo
2018-10-03 16:18:03399afab7e48ed419c2fea737c453f7e6Virustotal results 17/69 (24.64%) 173.94.9.21443Heodo
2018-10-03 10:49:5861e99e9930bbeecf4c9f1f24d6116f92Virustotal results 15/67 (22.39%) 173.94.9.21443Heodo
2018-10-03 07:52:025dadd8e05faa54060adbc854ed538fb5Virustotal results 19/68 (27.94%) 173.94.9.21443Heodo
2018-10-03 07:23:53104fffe6fce9b04f86d7faf90cb61b92Virustotal results 23/69 (33.33%) 173.94.9.21443Heodo

# of malware samples: 13