Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 178.20.74.212. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:178.20.74.212
Hostname:178-20-74-212.ip.wimore.it
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS203489
AS name:CLOUDFIRE
Country:- IT
First seen:2020-01-21 12:14:14 UTC
Last seen:2020-02-12 15:15:26 UTC
Last online:2020-02-17

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-02-14 07:30:0796f0c96fc770b3a0f521dec80f8876fdVirustotal results 15 / 72 (20.83%) 178.20.74.21280Heodo
2020-02-13 10:47:06d3d4a61d627292a16c88f69b50ca66e6Virustotal results 52 / 71 (73.24%) 178.20.74.21280Heodo
2020-02-12 20:51:574a81ce55ceca7af7ef58745eaed3b026Virustotal results 6 / 72 (8.33%) 178.20.74.21280Heodo
2020-02-08 11:00:04aeaebc8daec00ade5174c248807d028dVirustotal results 15 / 71 (21.13%) 178.20.74.21280Heodo
2020-02-05 08:56:4295869643ed00146e34b380c453c92ac0n/a178.20.74.21280Heodo
2020-02-05 07:34:19d0109f1a95382dfad4f6ec2e19082d98Virustotal results 23 / 71 (32.39%) 178.20.74.21280Heodo

# of malware samples: 6