Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 186.170.25.122. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:186.170.25.122
Hostname:n/a
Status:Offline
Spamhaus SBL:SBL427202
Malware:Heodo -
AS number:AS3816
AS name:COLOMBIA TELECOMUNICACIONES S.A. ESP
Country:- CO
First seen:2018-12-17 20:33:21 UTC
Last seen:2019-02-21 00:58:16 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-06-12 13:40:108f23b0763c1a0889705771434ff5aaa9Virustotal results 38/72 (52.78%) 186.170.25.12220Quakbot
2019-06-12 13:40:108f23b0763c1a0889705771434ff5aaa9Virustotal results 38/72 (52.78%) 186.170.25.12220Quakbot
2019-06-12 13:40:108f23b0763c1a0889705771434ff5aaa9Virustotal results 38/72 (52.78%) 186.170.25.12220Quakbot
2019-06-10 06:41:258131842354158e0d06b13d19709dfcabVirustotal results 39/72 (54.17%) 186.170.25.12220Quakbot
2019-05-31 08:55:1213d6263b923a16a3b571efd31eb18776Virustotal results 42/67 (62.69%) 186.170.25.12220Quakbot
2019-05-29 07:54:03887765c812c16e5ec63d0493bf6d9cbdVirustotal results 38/73 (52.05%) 186.170.25.12220Quakbot
2019-05-10 23:50:15a0a995d4d49710180270fb75537e16f7Virustotal results 43/72 (59.72%) 186.170.25.12220

# of malware samples: 7