Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 181.16.18.72. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:181.16.18.72
Hostname:host-181-16-18-72.telered.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS27984
AS name:Ver Tv S.A.
Country:- AR
First seen:2020-03-12 19:08:16 UTC
Last seen:2020-04-13 13:58:19 UTC
Last online:2020-03-13

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-20 06:47:5900adadc32aa13eb901d44be4c56459e7Virustotal results 7 / 73 (9.59%) 181.16.18.728080Heodo
2020-03-17 10:22:03bd4ef93acaf99d6a69ddcfb3a3e295d7Virustotal results 13 / 73 (17.81%) 181.16.18.728080Heodo
2020-03-16 12:43:31a6489df2eb30555138606c5bc629762cn/a181.16.18.728080Heodo
2020-03-16 12:36:0658ca9ea4ae3b1a768406abd1ce6cf52dn/a181.16.18.728080Heodo
2020-03-16 04:32:49087ba0a9bd95ee325f5093c7d4eee27cVirustotal results 33 / 73 (45.21%) 181.16.18.728080Heodo
2020-03-15 13:24:50c0de01d11d724f35ad32ec2ad5abf476Virustotal results 15 / 71 (21.13%) 181.16.18.728080Heodo
2020-03-14 23:36:01db353f59b31cb70162875a2301fe7560Virustotal results 31 / 73 (42.47%) 181.16.18.728080Heodo
2020-03-13 12:31:39ab8f31befce5ca726cafcab94b382ccfVirustotal results 12 / 73 (16.44%) 181.16.18.728080Heodo
2020-03-13 06:03:338bde6578db768bd5ee956e9b155eaaf7n/a181.16.18.728080Heodo
2020-03-12 18:35:318fd8e2aeedf85b2f0ebd49c44c461ef5n/a181.16.18.728080Heodo
2020-03-10 10:52:203d9bacf5aaddd16ccfb2fc3f05a501d3n/a181.16.18.728080Heodo

# of malware samples: 11