Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 174.64.65.21. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:174.64.65.21
Hostname:wsip-174-64-65-21.ga.at.cox.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS22773
AS name:ASN-CXA-ALL-CCI-22773-RDC - Cox Communications Inc., US
Country:- US
First seen:2018-09-06 08:19:47 UTC
Last seen:2018-09-07 11:03:42 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-09-10 11:19:140db4e5e07c8fbdba2818f092edeb7ee1Virustotal results 38/68 (55.88%) 174.64.65.2180Heodo
2018-09-09 07:09:57aa4b9772202b7f5ba037c3b9a21f19ffVirustotal results 24/67 (35.82%) 174.64.65.2180Heodo
2018-09-07 11:11:582b58b81a7ad401af3eb6a089c1decc34Virustotal results 15/68 (22.06%) 174.64.65.2180Heodo
2018-09-07 10:47:37f9d16532b3bb87bcfa272a1ed8055235Virustotal results 13/68 (19.12%) 174.64.65.2180Heodo
2018-09-07 06:08:02486ca687f5429fcd16c28d2ada29ecbdVirustotal results 16/68 (23.53%) 174.64.65.2180Heodo
2018-09-06 19:44:4064f2f18f74c2360e3248b761935122d4Virustotal results 14/68 (20.59%) 174.64.65.2180Heodo
2018-09-06 19:41:339c3be12673e05c0b389b5ada1931de14Virustotal results 19/66 (28.79%) 174.64.65.2180Heodo
2018-09-06 19:28:42f71f5999aa58833d8a5729f7decba96aVirustotal results 15/68 (22.06%) 174.64.65.2180Heodo
2018-09-06 13:39:026b67ea1f7fc973209c17fe1a7630399cVirustotal results 14/65 (21.54%) 174.64.65.2180Heodo
2018-09-06 13:35:3194dac0187d66d32c000c1dbec4b77425Virustotal results 15/67 (22.39%) 174.64.65.2180Heodo
2018-09-06 11:15:550b6ba1d912cbe362816ac8f7221a6dd5Virustotal results 13/68 (19.12%) 174.64.65.2180Heodo
2018-09-06 11:10:52782cc642d58d66680fefbabdc4bada09Virustotal results 14/68 (20.59%) 174.64.65.2180Heodo
2018-09-06 10:58:59c68f1cafbb8f87d645f8a54807bf053eVirustotal results 13/68 (19.12%) 174.64.65.2180Heodo
2018-09-06 08:46:428326ca86d25a6cc9d63c8d2ff6b7c305Virustotal results 11/68 (16.18%) 174.64.65.2180Heodo
2018-09-06 08:19:47552e442f1263b2bbab2cb4c329dab0b3Virustotal results 9/68 (13.24%) 174.64.65.2180Heodo
2018-09-05 16:37:43bfa65b19f55b4ef1aa3cc66e38f6375fVirustotal results 12/67 (17.91%) 174.64.65.2180Heodo

# of malware samples: 16