Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.142.157.203. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.142.157.203
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2018-12-10 13:24:55 UTC
Last seen:2018-12-10 13:24:55 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 22:18:24f1cfc14ccbd1eff821444f8bcf6c400bVirustotal results 12/69 (17.39%) 189.142.157.203990Heodo
2018-12-11 07:00:1376efdf39ce4aa04d29a263007d65278dVirustotal results 47/70 (67.14%) 189.142.157.203990Heodo
2018-12-10 23:06:123e62cb6753a8c095568ab223b5ce20e8Virustotal results 9/70 (12.86%) 189.142.157.203990Heodo
2018-12-10 22:01:017bb79832eca853cd84b5ae35058a25ecVirustotal results 12/70 (17.14%) 189.142.157.203990Heodo
2018-12-10 21:09:588e5ffeab6266b7822bd14591b75bc123Virustotal results 41/69 (59.42%) 189.142.157.203990Heodo
2018-12-10 20:56:033b624154e54fe759acb03de7363c6e7dVirustotal results 12/69 (17.39%) 189.142.157.203990Heodo
2018-12-10 19:42:103fdd99e8d0e1ae46988ed92759ffab3cVirustotal results 44/70 (62.86%) 189.142.157.203990Heodo

# of malware samples: 7