Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 181.46.149.53. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:181.46.149.53
Hostname:cpe-181-46-149-53.telecentro-reversos.com.ar
Status:Offline
Spamhaus SBL:SBL426576
Malware:Heodo -
AS number:AS27747
AS name:Telecentro S.A.
Country:- AR
First seen:2018-12-11 21:12:10 UTC
Last seen:2018-12-12 13:56:17 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-12 14:39:15e7c8b02e619dc7bc4b50baa18d2e0dedVirustotal results 10/57 (17.54%) 181.46.149.5380Heodo
2018-12-12 14:09:497e047436c15467737d35d200d27bf99dVirustotal results 38/59 (64.41%) 181.46.149.5380Heodo
2018-12-12 13:25:028dc59c40f624f5d058cab88d952a8a58Virustotal results 13/61 (21.31%) 181.46.149.5380Heodo
2018-12-12 12:08:05b8f043a1042840ae4db39609f1e4839dVirustotal results 27/60 (45.00%) 181.46.149.5380Heodo
2018-12-12 07:14:20f117397cf97bcd7421057c3393d5c0feVirustotal results 10/69 (14.49%) 181.46.149.5380Heodo
2018-12-12 00:46:458e616586e92061ebe4571f39c1814c10Virustotal results 37/60 (61.67%) 181.46.149.5380Heodo
2018-12-11 21:33:2139c4dc52418969a25b35e131410cfb88Virustotal results 38/59 (64.41%) 181.46.149.5380Heodo
2015-05-06 15:24:18510bf3ce4402b85eea1278f30a9972cbVirustotal results 29/56 (51.79%) 181.46.149.5380Necurs

# of malware samples: 8