Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 174.96.202.70. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:174.96.202.70
Hostname:cpe-174-96-202-70.columbus.res.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10796
AS name:TWC-10796-MIDWEST - Charter Communications Inc
Country:- US
First seen:2019-02-16 01:42:09 UTC
Last seen:2019-02-20 16:00:25 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-23 23:52:22df179ca0176959536e18f2b8637d46bdVirustotal results 8/58 (13.79%) 174.96.202.70443Heodo
2019-02-20 22:35:27e9de32b7754fdbe4e06ac2729aa38c44Virustotal results 14/59 (23.73%) 174.96.202.70443Heodo
2019-02-20 22:27:3847e19fb6ed3d3950eb2ede25a0cfb1a5Virustotal results 12/53 (22.64%) 174.96.202.70443Heodo
2019-02-20 22:17:237efa5ce87f09354d38c2a191f5846df6Virustotal results 10/58 (17.24%) 174.96.202.70443Heodo
2019-02-20 22:15:552092c4989efab05e5b9c010b815da32cVirustotal results 43/66 (65.15%) 174.96.202.70443Plugx
2019-02-20 22:09:25799c8150ef2ce93c99972d1648176acdVirustotal results 15/58 (25.86%) 174.96.202.70443Heodo
2019-02-20 22:01:54a4aa2a63a7dcb70f5012fb06475a918bVirustotal results 10/58 (17.24%) 174.96.202.70443Heodo
2019-02-20 21:59:0085ab340a24f770eb7bea71d8d0dd13efVirustotal results 10/53 (18.87%) 174.96.202.70443Heodo
2019-02-20 21:49:30b3a11a661f52bf97eb199ccbc58d3352Virustotal results 14/58 (24.14%) 174.96.202.70443Heodo
2019-02-20 21:40:10c83d45dec109b0595b14d68cbe19dc39Virustotal results 10/58 (17.24%) 174.96.202.70443Heodo
2019-02-20 21:28:27dea9cc944c3ccf65459fa1834fec228dVirustotal results 10/58 (17.24%) 174.96.202.70443Heodo
2019-02-20 21:18:4977021f2e417651e9977cc1c955cab61dVirustotal results 59/71 (83.10%) 174.96.202.70443Mydoom
2019-02-20 21:17:46246718fb49a43af91c43e3e9b132350bVirustotal results 10/53 (18.87%) 174.96.202.70443Heodo
2019-02-20 21:10:23f9414552f5220077414b4bc854fb9b92Virustotal results 9/57 (15.79%) 174.96.202.70443Heodo
2019-02-20 21:00:21f141a8303223b0c510df712de973dcdfVirustotal results 10/58 (17.24%) 174.96.202.70443Heodo
2019-02-20 16:28:2055f9c376493eec8ac913a424bfbf69a9Virustotal results 9/58 (15.52%) 174.96.202.70443Heodo
2019-02-20 15:53:090e64580008f9fef93a18015c1f712071Virustotal results 9/57 (15.79%) 174.96.202.70443Heodo
2019-02-20 15:52:59fa2d39ea20e93a2d279c14ef73f84e2bVirustotal results 21/67 (31.34%) 174.96.202.70443Heodo
2019-02-20 14:19:5108daf31f872df6eb3591d7919bf83e8eVirustotal results 12/53 (22.64%) 174.96.202.70443Heodo
2019-02-20 12:50:563b6ca242dafb65f652bc27b1ac79a677Virustotal results 50/66 (75.76%) 174.96.202.70443Heodo
2019-02-20 12:49:182c698cd23ea5b739eac112551120e7d8Virustotal results 36/54 (66.67%) 174.96.202.70443Heodo
2019-02-20 12:49:182c698cd23ea5b739eac112551120e7d8Virustotal results 36/54 (66.67%) 174.96.202.70443Heodo
2019-02-20 07:58:263d3000dc4ee7ce73fb5b99fd72f85a8eVirustotal results 13/53 (24.53%) 174.96.202.70443Heodo
2019-02-20 07:51:0544cec6ee14df6f7d9c5777664d36f5c4Virustotal results 11/57 (19.30%) 174.96.202.70443Heodo
2019-02-20 07:48:4196bbb237960d16f9012379c0f0653349Virustotal results 10/60 (16.67%) 174.96.202.70443Heodo
2019-02-20 07:39:41fee627990c72491ee75870bf286bb7adVirustotal results 14/58 (24.14%) 174.96.202.70443Heodo
2019-02-20 07:23:48a866ba0b03514d771c433279e27d096aVirustotal results 51/66 (77.27%) 174.96.202.70443njrat
2019-02-20 07:23:391b8a251452c3f24cac3267b119e556e4Virustotal results 10/57 (17.54%) 174.96.202.70443Heodo
2019-02-19 17:49:4791fbff81b3ec93a99e2771c2665958faVirustotal results 10/57 (17.54%) 174.96.202.70443Heodo

# of malware samples: 29