Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.146.73.28. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.146.73.28
Hostname:dsl-189-146-73-28-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2018-12-06 15:19:28 UTC
Last seen:2018-12-15 07:00:41 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-01 10:20:52f09e61d72f91f95f37b045b81d00b9fcVirustotal results 16/59 (27.12%) 189.146.73.28443Heodo
2018-12-23 13:23:460612224f9eb915356afa9e012a695f53Virustotal results 36/59 (61.02%) 189.146.73.28443Heodo
2018-12-23 12:51:10f3a9bbfeef670025e8a1ec547c1aba8dVirustotal results 13/60 (21.67%) 189.146.73.28443Heodo
2018-12-23 12:19:16dd5b6b01acaaf4073a1a34cd2b2f253cVirustotal results 13/59 (22.03%) 189.146.73.28443Heodo
2018-12-23 11:58:53a58824f214a65ff3d247e7c6dc3e1f41Virustotal results 13/59 (22.03%) 189.146.73.28443Heodo
2018-12-23 11:35:34b81d7e8075a9096f12463fa59c22222eVirustotal results 13/56 (23.21%) 189.146.73.28443Heodo
2018-12-23 11:33:02bf9853c22d54e142c566026dc0390c3eVirustotal results 13/60 (21.67%) 189.146.73.28443Heodo
2018-12-23 11:21:06aaafe61ca4e66e1beebc6b69ede6bfafVirustotal results 11/51 (21.57%) 189.146.73.28443Heodo
2018-12-23 11:20:02172a54e8d846425390e4fb6f5ee09556Virustotal results 13/58 (22.41%) 189.146.73.28443Heodo
2018-12-15 19:23:383f0ea81a36b0543f7abaec6e7c480259Virustotal results 40/59 (67.80%) 189.146.73.28443Heodo
2018-12-15 09:26:49bf5371c982f9364cabb8aed1892d3b6cVirustotal results 40/60 (66.67%) 189.146.73.28443Heodo
2018-12-08 13:08:471330688c8db37885aa2bbb9d3cd41007Virustotal results 59/71 (83.10%) 189.146.73.28443Mydoom
2018-12-07 11:06:107b7470545aadd8e28e4ba51ed6be224aVirustotal results 19/70 (27.14%) 189.146.73.28443Heodo
2018-12-07 08:33:23eee4004ad663cf941710a873ff700bc0Virustotal results 13/68 (19.12%) 189.146.73.28443Heodo
2018-12-07 04:43:3562d385b103d945898afd1406b7b57228Virustotal results 18/60 (30.00%) 189.146.73.28443Heodo
2018-12-07 01:48:37f4a861a652131dfd0468ecc2650eb15eVirustotal results 39/60 (65.00%) 189.146.73.28443Heodo

# of malware samples: 16