Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 181.225.24.251. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:181.225.24.251
Hostname:customer-251.tpp.com.ar.24.225.181.in-addr.arpa
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS52232
AS name:Telefona Pblica y Privada S.A.
Country:- AR
First seen:2020-02-17 15:10:19 UTC
Last seen:2020-03-25 11:12:08 UTC
Last online:2020-03-30

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-26 18:46:32388d43258d2901189fb31fa5296688d0Virustotal results 5 / 72 (6.94%) 181.225.24.25180Heodo
2020-03-25 11:38:03f9f2f861e164282de2c3c1f4f12933den/a181.225.24.25180Heodo
2020-03-25 11:36:51e0b32b7204bfd5e5b16b62bf6b9c8f1en/a181.225.24.25180Heodo
2020-03-25 11:36:27daac0417c5e3c5668df8078631a7f526n/a181.225.24.25180Heodo
2020-03-25 11:36:06fabddcf3166ff8b11df1e732d5df8122n/a181.225.24.25180Heodo
2020-03-25 11:30:509d13efa49e012f27f05fd3ddc5ec37f4n/a181.225.24.25180Heodo
2020-03-25 11:27:139bb1d4cb67aa5920bb9475ece4612905n/a181.225.24.25180Heodo
2020-03-25 11:26:31adbefbdd900d84e89fdba45d0fbbe770n/a181.225.24.25180Heodo
2020-03-25 11:26:19473f5da6bf46fe5cf559a4f816870362n/a181.225.24.25180Heodo
2020-03-25 11:24:308c6550b0541d7fee0e6423ab4bce5901n/a181.225.24.25180Heodo
2020-03-25 11:22:5229ac5b60850e40368224db7dcbe467e1n/a181.225.24.25180Heodo
2020-03-25 11:16:31134099415951caef9b5506ce63c06b76n/a181.225.24.25180Heodo
2020-03-20 09:51:19946a0f3c2386c1701f24983a1a0a2739Virustotal results 42 / 74 (56.76%) 181.225.24.25180Heodo
2020-03-08 11:56:146815ad04441056d104525b59f46485fbVirustotal results 47 / 73 (64.38%) 181.225.24.25180Heodo
2020-02-24 15:57:429f311c469a0b33f766865c20f4d13ad4Virustotal results 8 / 68 (11.76%) 181.225.24.25180Heodo
2020-02-19 10:54:410dddd7df295c3e6c40ba7e654fafddb2n/a181.225.24.25180Heodo

# of malware samples: 16