Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.130.56.200. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.130.56.200
Hostname:dsl-189-130-56-200-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2019-02-25 13:36:20 UTC
Last seen:2019-02-25 16:50:52 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-25 17:13:59eb7b2b6d4a5b70ea798d0b2d9ee09abeVirustotal results 25/55 (45.45%) 189.130.56.20050000Heodo
2019-02-25 17:03:44029b55f627ec2f0b6a258155a01360daVirustotal results 11/59 (18.64%) 189.130.56.20050000Heodo
2019-02-25 16:41:54dc56a975c1dfb549899878cd0eccfd5dVirustotal results 11/55 (20.00%) 189.130.56.20050000Heodo
2019-02-25 16:34:202408cdcb3e84c4694b856b50f71e95bdVirustotal results 11/58 (18.97%) 189.130.56.20050000Heodo
2019-02-25 16:09:27d0c6718cc84c603cc7f2b05446b95b39Virustotal results 14/55 (25.45%) 189.130.56.20050000Heodo
2019-02-25 15:58:21598bfa97c4cd72bcd83d427f68d98218Virustotal results 11/57 (19.30%) 189.130.56.20050000Heodo
2019-02-25 15:54:1924fa6b76ca554e97d95152ccbd604eb4Virustotal results 25/54 (46.30%) 189.130.56.20050000Heodo
2019-02-25 14:39:46a219183ff142085461f5d9a6e950ee03Virustotal results 10/58 (17.24%) 189.130.56.20050000Heodo
2019-02-25 14:02:28acc568965edc461a28e38031ca392acbVirustotal results 24/52 (46.15%) 189.130.56.20050000Heodo

# of malware samples: 9