Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 181.111.60.39. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:181.111.60.39
Hostname:host39.181-111-60.telecom.net.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7303
AS name:Telecom Argentina S.A.
Country:- AR
First seen:2018-12-13 20:05:22 UTC
Last seen:2018-12-17 15:17:25 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-21 07:05:28d6e63dd7029b348b3554d450d5303a26Virustotal results 38/68 (55.88%) 181.111.60.39443Heodo
2018-12-17 15:28:402817f4b47cac2f28314658486fa5b466Virustotal results 17/69 (24.64%) 181.111.60.39443Heodo
2018-12-17 15:10:5550d63d4a0b61c152cd3e3a8cb1cc9a8fVirustotal results 17/59 (28.81%) 181.111.60.39443Heodo
2018-12-15 13:43:56a1453d692ad7ed6e63fcda29b121b8c6Virustotal results 55/70 (78.57%) 181.111.60.39443
2018-12-14 15:16:392e2a1f0cdc51c4e1717a27e22f6f5191Virustotal results 18/70 (25.71%) 181.111.60.39443Heodo
2018-12-14 09:15:304fb7483329f0d0f5edee555b77d7bad4Virustotal results 21/71 (29.58%) 181.111.60.39443Heodo
2018-12-13 22:32:237e06bd8189ba453367dc00fd57146a8dVirustotal results 16/59 (27.12%) 181.111.60.39443Heodo
2018-12-13 22:30:215a83d8bb7b5c36336b2332afea378fd4Virustotal results 16/59 (27.12%) 181.111.60.39443Heodo
2018-12-13 20:20:067e6dc7415b5c22ea00d1c3f194e6cbb0Virustotal results 13/71 (18.31%) 181.111.60.39443Heodo

# of malware samples: 9