Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.187.141.15. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.187.141.15
Hostname:dsl-189-187-141-15-dyn.prod-infinitum.com.mx
Status:Offline
Spamhaus SBL:SBL459531
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2019-09-18 18:21:13 UTC
Last seen:2019-10-05 00:09:17 UTC
Last online:2019-09-25

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-10-05 00:34:39231713411c1e0a6e8cdf3a71d996277dVirustotal results 41 / 61 (67.21%) 189.187.141.1550000Heodo
2019-10-03 07:10:431d76721907a52e0324d0885e72535b9cVirustotal results 12/59 (20.34%) 189.187.141.1550000Heodo
2019-10-03 06:54:03e85d4fce87870c5b8ae5537062846632Virustotal results 18 / 71 (25.35%) 189.187.141.1550000Heodo
2019-10-03 04:58:140c72a597bb89a46b543b82a6d248bea4Virustotal results 34/58 (58.62%) 189.187.141.1550000Heodo
2019-10-03 04:48:46ad6356c06fa5123cbe049a1beeb62464n/a189.187.141.1550000Heodo

# of malware samples: 5