Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 187.243.203.67. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:187.243.203.67
Hostname:customer-QRO-203-67.megared.net.mx
Status:Offline
Spamhaus SBL:SBL426548
Malware:Heodo -
AS number:AS13999
AS name:Mega Cable, S.A. de C.V.
Country:- MX
First seen:2018-12-13 20:04:21 UTC
Last seen:2018-12-17 15:17:25 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-21 07:05:28d6e63dd7029b348b3554d450d5303a26Virustotal results 38/68 (55.88%) 187.243.203.678090Heodo
2018-12-17 15:28:402817f4b47cac2f28314658486fa5b466Virustotal results 17/69 (24.64%) 187.243.203.678090Heodo
2018-12-17 15:10:5550d63d4a0b61c152cd3e3a8cb1cc9a8fVirustotal results 17/59 (28.81%) 187.243.203.678090Heodo
2018-12-17 13:24:563f3cacbc1028aeb24258383afc466574Virustotal results 19/60 (31.67%) 187.243.203.678090Heodo
2018-12-15 13:42:04d3b468348e30b404fd903a4546c2c40fVirustotal results 21/70 (30.00%) 187.243.203.678090Heodo
2018-12-14 17:21:1057676c6cc919fcc0fe5a0fc950cd4476Virustotal results 14/60 (23.33%) 187.243.203.678090Heodo
2018-12-14 15:16:392e2a1f0cdc51c4e1717a27e22f6f5191Virustotal results 18/70 (25.71%) 187.243.203.678090Heodo
2018-12-14 09:15:304fb7483329f0d0f5edee555b77d7bad4Virustotal results 21/71 (29.58%) 187.243.203.678090Heodo
2018-12-14 07:19:558e6c356bcbb9d53efc87a63c389a426eVirustotal results 41/59 (69.49%) 187.243.203.678090Heodo
2018-12-13 22:33:4087e39af4cab480c1635035cdbeda0bcfVirustotal results 16/60 (26.67%) 187.243.203.678090Heodo
2018-12-13 22:32:237e06bd8189ba453367dc00fd57146a8dVirustotal results 16/59 (27.12%) 187.243.203.678090Heodo
2018-12-13 22:32:237e06bd8189ba453367dc00fd57146a8dVirustotal results 16/59 (27.12%) 187.243.203.678090Heodo
2018-12-13 22:30:215a83d8bb7b5c36336b2332afea378fd4Virustotal results 16/59 (27.12%) 187.243.203.678090Heodo
2018-12-13 20:20:067e6dc7415b5c22ea00d1c3f194e6cbb0Virustotal results 13/71 (18.31%) 187.243.203.678090Heodo
2018-12-13 20:19:250da9c9944487dfff9e9d5b11be5ddb24Virustotal results 38/60 (63.33%) 187.243.203.678090Heodo

# of malware samples: 15