Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 181.230.116.163. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:181.230.116.163
Hostname:163-116-230-181.cab.prima.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10481
AS name:Telecom Argentina S.A.
Country:- AR
First seen:2020-03-10 10:39:06 UTC
Last seen:2020-03-20 14:43:12 UTC
Last online:2020-03-22

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-26 18:09:520fb56d8dedea9491d13ad54153ba9e34n/a181.230.116.16380Heodo
2020-03-18 22:49:07ce576b1a87f3eb8f63a15b2445e696d4Virustotal results 20 / 72 (27.78%) 181.230.116.16380Heodo
2020-03-18 04:12:220d3170dd9e41b8e26fb186c67e941637n/a181.230.116.16380Heodo
2020-03-18 04:06:2497eb1d298782cfde5eaa2cae138e69d3n/a181.230.116.16380Heodo
2020-03-17 18:45:393304335f8dec13f6274ad8a8d75d4a1an/a181.230.116.16380Heodo
2020-03-14 17:11:49b6f463874ab2087c32c4b86e4fdce3dcVirustotal results 22 / 71 (30.99%) 181.230.116.16380Heodo
2020-03-10 11:07:2730dfd57f294ed3d01dd22c3602b2513dn/a181.230.116.16380Heodo
2020-03-10 11:00:019f7c6118e5c8354f8191cf623ea6f82an/a181.230.116.16380Heodo

# of malware samples: 8