Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.145.6.189. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.145.6.189
Hostname:dsl-189-145-6-189-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2019-10-29 22:52:11 UTC
Last seen:2019-11-02 19:45:51 UTC
Last online:2019-10-31

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-05 08:27:185aec6db5547b819e55960a3a5d701336Virustotal results 35 / 71 (49.30%) 189.145.6.18980Heodo
2019-11-03 23:07:2684f4d4c2b2aa6716f5e03353b335edd2Virustotal results 50/68 (73.53%) 189.145.6.18980Heodo
2019-11-03 18:16:3891af8824afc595016e89180a96ac2af9Virustotal results 16 / 64 (25.00%) 189.145.6.18980Heodo
2019-10-31 16:59:590cf4f090b5c1fb3729966b17c3c526f4Virustotal results 41 / 68 (60.29%) 189.145.6.18980Heodo
2019-10-31 06:39:4623bfab023c0eb8c15d5664ec48732010Virustotal results 14 / 68 (20.59%) 189.145.6.18980Heodo
2019-10-30 14:20:54ec2594db77b2de3a2bfab19dcaa1c148Virustotal results 15/69 (21.74%) 189.145.6.18980Heodo
2019-10-30 14:02:35fad1ed6f20c22f0482754dc585d14267Virustotal results 12 / 70 (17.14%) 189.145.6.18980Heodo
2019-10-30 12:02:30ef07ddd6933a790a52395b4ee510dff3n/a189.145.6.18980Heodo
2019-10-30 07:53:4036d03f837c3e63d7949df4e257e883bbVirustotal results 16 / 70 (22.86%) 189.145.6.18980Heodo
2019-10-30 07:27:111134e3b311d402a4334890b3fd9df1a3Virustotal results 17 / 70 (24.29%) 189.145.6.18980Heodo

# of malware samples: 10