Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 187.163.91.104. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:187.163.91.104
Hostname:187-163-91-104.static.axtel.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS6503
AS name:Axtel, S.A.B. de C.V.
Country:- MX
First seen:2018-12-20 02:02:51 UTC
Last seen:2019-01-16 06:21:15 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-16 06:40:290bb35fc6629c6436a02bb9a191f570d2Virustotal results 36/59 (61.02%) 187.163.91.10480Heodo
2019-01-16 05:18:27d325380d42ac8f2695f2b7de6fca9d0eVirustotal results 40/61 (65.57%) 187.163.91.10480Heodo
2019-01-16 04:16:59d0d523a1c77449618e8320143ef1f850Virustotal results 39/61 (63.93%) 187.163.91.10480Heodo
2019-01-15 23:10:51b386306a072544f180360cdc004ef2aeVirustotal results 31/60 (51.67%) 187.163.91.10480Heodo
2019-01-15 21:30:41b6f0fe51ccbc9ab5692c6befd68cc29fVirustotal results 10/57 (17.54%) 187.163.91.10480Heodo
2019-01-15 21:19:10bce9b5ae888f0c34337353703fbc34eaVirustotal results 37/70 (52.86%) 187.163.91.10480Heodo
2019-01-15 20:47:350ad59671102bbd228c163ed6b59ded30Virustotal results 14/61 (22.95%) 187.163.91.10480Heodo
2019-01-15 20:33:51e49662b2423038aea8bcd07b532c3d73Virustotal results 10/57 (17.54%) 187.163.91.10480Heodo
2019-01-15 19:58:16be932d4ff921c672d6904fca0f668818Virustotal results 10/61 (16.39%) 187.163.91.10480Heodo
2019-01-15 19:47:17a25188cbadc97b7dab735c0295afb7fdVirustotal results 31/59 (52.54%) 187.163.91.10480Heodo
2019-01-15 19:37:56094cc5b34542187ded52c866650f16fdVirustotal results 9/60 (15.00%) 187.163.91.10480Heodo
2019-01-15 19:37:4769c4208e7dac3d011830fc9f1d190c2aVirustotal results 8/52 (15.38%) 187.163.91.10480Heodo
2019-01-15 19:12:23a7a2c928bed20a23a768b5628c6da11bVirustotal results 8/58 (13.79%) 187.163.91.10480Heodo
2019-01-15 19:02:1980c45ad4cd29783f925acd30c141d70bVirustotal results 10/58 (17.24%) 187.163.91.10480Heodo
2019-01-15 18:28:33c405e367ede93c4fdad715a9ca245d2dVirustotal results 33/60 (55.00%) 187.163.91.10480Heodo
2019-01-15 18:28:2200580825485014880fa8a682c5c3dbd9Virustotal results 13/71 (18.31%) 187.163.91.10480Heodo
2019-01-15 18:28:2200580825485014880fa8a682c5c3dbd9Virustotal results 13/71 (18.31%) 187.163.91.10480Heodo
2019-01-15 17:21:53f8f1e00c36205a2860bfc0ae6503e9e9Virustotal results 40/62 (64.52%) 187.163.91.10480Heodo
2019-01-15 16:52:28611c6e469ade0764bf1773824dc99fbaVirustotal results 32/60 (53.33%) 187.163.91.10480Heodo
2019-01-15 16:37:18d2433641273f6a3ae7e32bb91c87c593Virustotal results 9/59 (15.25%) 187.163.91.10480Heodo
2019-01-15 13:22:1309c397d77fb9bb1035324f8d69cd80c2Virustotal results 34/59 (57.63%) 187.163.91.10480Heodo
2019-01-15 13:21:042c33126476745fe56560472a8af5a1d8Virustotal results 34/68 (50.00%) 187.163.91.10480Heodo
2019-01-15 11:28:3823583a757498d4bfda4fed60f0784055Virustotal results 13/72 (18.06%) 187.163.91.10480Heodo
2019-01-15 08:38:33bba3b06f2dd9a71264513990aaab40cbVirustotal results 24/69 (34.78%) 187.163.91.10480Heodo
2019-01-15 07:11:475a50cdcea6aab0cbf2a19ca1f86fd29eVirustotal results 32/70 (45.71%) 187.163.91.10480Heodo
2018-12-21 08:58:2394b20886da9ce5e25c52f15ed42f8b30Virustotal results 15/71 (21.13%) 187.163.91.10480Heodo
2018-12-20 13:45:28a7be55aeda7fa072aa365d310bd5197dVirustotal results 40/59 (67.80%) 187.163.91.10480Heodo
2018-12-20 13:24:15ab26708202b7de7bfe3f3ab347adbc67Virustotal results 12/71 (16.90%) 187.163.91.10480Heodo
2018-12-20 10:05:26e3f9b9abb9043ff71056acdefd893e90Virustotal results 19/71 (26.76%) 187.163.91.10480Heodo
2018-12-20 10:05:26e3f9b9abb9043ff71056acdefd893e90Virustotal results 19/71 (26.76%) 187.163.91.10480Heodo
2018-12-20 07:51:4576ff256447def5092c808ebffcfcbe57Virustotal results 19/71 (26.76%) 187.163.91.10480Heodo
2018-12-20 07:25:321298e4c324fa80ac43a1a1a23023f705Virustotal results 28/60 (46.67%) 187.163.91.10480Heodo
2018-12-20 07:25:321298e4c324fa80ac43a1a1a23023f705Virustotal results 28/60 (46.67%) 187.163.91.10480Heodo

# of malware samples: 33