Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.159.133.168. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.159.133.168
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2018-12-10 20:02:30 UTC
Last seen:never

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-11 13:50:14f49375f5a0e2b5721e405a6f2889aa64Virustotal results 16/70 (22.86%) 189.159.133.1688080Heodo
2018-12-11 13:30:2487b3c2506c90ce062d3e4c8cd2b48646Virustotal results 17/68 (25.00%) 189.159.133.1688080Heodo
2018-12-11 08:17:375e5ba55a24bf897b33c626f3df1cc18aVirustotal results 16/70 (22.86%) 189.159.133.1688080Heodo
2018-12-11 08:08:2769e51e469d60f4ca70bf5ddef9a72ce4Virustotal results 52/70 (74.29%) 189.159.133.1688080Heodo
2018-12-11 01:12:03f822132fcc306bcc5800843c74c0f028Virustotal results 17/68 (25.00%) 189.159.133.1688080Heodo
2018-12-11 00:34:10a56b6ec319e3f3b8bdc9d84f71c14baaVirustotal results 20/68 (29.41%) 189.159.133.1688080Heodo
2018-12-10 23:59:21fd09b9cd6e6af1060cd8d072ee3138c2Virustotal results 42/71 (59.15%) 189.159.133.1688080Heodo
2018-12-10 21:07:20b681f5e5dcaf1dbf9fa749c2de1e183bVirustotal results 14/68 (20.59%) 189.159.133.1688080Heodo
2018-12-10 19:53:5158bc087a6717c5f2e6792b916973c3a1Virustotal results 47/71 (66.20%) 189.159.133.1688080Heodo

# of malware samples: 9