Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 187.230.99.192. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:187.230.99.192
Hostname:dsl-187-230-99-192-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2019-11-15 11:22:20 UTC
Last seen:2019-11-29 03:45:56 UTC
Last online:2019-11-27

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-29 12:54:57150b65bdd90a5537964ecc8333f21587Virustotal results 5 / 69 (7.25%) 187.230.99.192443Heodo
2019-11-28 21:40:46c9ab0f40204965c240fe6c80111e520dVirustotal results 7 / 67 (10.45%) 187.230.99.192443Heodo
2019-11-27 10:25:40fe7f8b1543577ad9be220a4a7b5709d7Virustotal results 9 / 69 (13.04%) 187.230.99.192443Heodo
2019-11-27 10:07:2012510c86dffed267dabb60227d9aca97Virustotal results 5 / 68 (7.35%) 187.230.99.192443Heodo
2019-11-19 06:05:166387b60bdff0768e5d160a19a5e736a7Virustotal results 18 / 70 (25.71%) 187.230.99.192443Heodo
2019-11-19 05:52:46c01af10a5ad645a983a60bc2bb1cb315Virustotal results 20 / 71 (28.17%) 187.230.99.192443Heodo
2019-11-15 14:54:37d3564c62d72054d41f09a2fda2ed66f9Virustotal results 36/57 (63.16%) 187.230.99.192443Heodo
2019-11-15 14:38:27b3ab9fb16363cc233f14be72270b0637Virustotal results 46/67 (68.66%) 187.230.99.192443Heodo
2019-11-15 14:03:33a7989357574fa5cc26f968d4934eed1aVirustotal results 34/59 (57.63%) 187.230.99.192443Heodo
2019-11-15 13:46:5109ab185f170b9a077645524e2ea069feVirustotal results 35/61 (57.38%) 187.230.99.192443Heodo

# of malware samples: 10