Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.179.108.157. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.179.108.157
Hostname:dsl-189-179-108-157-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2020-01-09 23:00:37 UTC
Last seen:2020-01-16 03:00:15 UTC
Last online:2020-01-10

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-16 02:52:18ee5903c7b9efc7853baf553e9a40f85aVirustotal results 39 / 73 (53.42%) 189.179.108.15780Heodo
2020-01-16 01:42:2387d9a11ace3dc45891d6d38194e2c17eVirustotal results 41 / 71 (57.75%) 189.179.108.15780Heodo
2020-01-16 01:37:276397ea5660b21c99fe774cc8f77da05aVirustotal results 44 / 73 (60.27%) 189.179.108.15780Heodo
2020-01-14 12:52:575517b7c3ed752568fc2f0548fcf81c80Virustotal results 42 / 72 (58.33%) 189.179.108.15780Heodo
2020-01-14 12:48:17462b2c3b0380a6bbc2f647f0cb6ea00cVirustotal results 42 / 72 (58.33%) 189.179.108.15780Heodo
2020-01-14 11:57:0175042948f42033c6a51fc7737a223f5cVirustotal results 40 / 72 (55.56%) 189.179.108.15780Heodo
2020-01-13 16:43:2396d8143518fedb67473f7ca733f7e394Virustotal results 23 / 72 (31.94%) 189.179.108.15780Heodo
2020-01-13 16:30:338cabbf88765958964cf3a59c4dae8be9Virustotal results 23 / 73 (31.51%) 189.179.108.15780Heodo
2020-01-13 15:28:1915591a8351ac67c327877ee6f5ae334en/a189.179.108.15780Heodo
2020-01-13 15:24:3659d9b0ae6f6931ee5c02ab60e869b4ean/a189.179.108.15780Heodo
2020-01-13 15:19:4429349db405100479b01db65735fdcfa3n/a189.179.108.15780Heodo
2020-01-12 16:21:321da56c05e0171c61d85d04da74d71ac3Virustotal results 33 / 70 (47.14%) 189.179.108.15780Heodo
2020-01-09 22:55:118cb9cebce2ab751b35c003328325a8c8Virustotal results 5 / 71 (7.04%) 189.179.108.15780Heodo

# of malware samples: 13