Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.154.128.205. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.154.128.205
Hostname:dsl-189-154-128-205-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2020-04-09 16:08:30 UTC
Last seen:2020-04-21 18:03:23 UTC
Last online:2020-04-10

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-05-06 09:28:20d262de9e4d08ba25763ceb00b1f2247aVirustotal results 26 / 72 (36.11%) 189.154.128.20580Heodo
2020-05-05 16:55:39c306a3d81e19694334d3e39025e17598Virustotal results 28 / 73 (38.36%) 189.154.128.20580Heodo
2020-04-26 01:33:225f5b0694931ee732f4c055b8d98bc4d9Virustotal results 25 / 72 (34.72%) 189.154.128.20580Heodo
2020-04-26 01:32:125f8c2a1af40667e2be837896f97630ffVirustotal results 17 / 59 (28.81%) 189.154.128.20580Heodo
2020-04-19 22:04:48230093bbfcbd95399f30fdae74e410dcVirustotal results 36 / 72 (50.00%) 189.154.128.20580Heodo
2020-04-19 07:06:200184730b4b9eeca740d347a9f2702b5aVirustotal results 11 / 70 (15.71%) 189.154.128.20580Heodo
2020-04-19 06:12:11422510596451cc5f1bdd482d3bfd0f13Virustotal results 37 / 73 (50.68%) 189.154.128.20580Heodo
2020-04-19 05:08:28adcc9ade0b76d6f8669d8e492213c2beVirustotal results 35 / 68 (51.47%) 189.154.128.20580Heodo

# of malware samples: 8