Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.208.84.186. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.208.84.186
Hostname:bb-mvs-189-208-84-186.mexdf.static.axtel.net
Status:Offline
Spamhaus SBL:SBL427212
Malware:Heodo -
AS number:AS6503
AS name:Axtel, S.A.B. de C.V.
Country:- MX
First seen:2018-12-12 18:51:27 UTC
Last seen:2018-12-15 09:12:27 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-15 11:27:546cdbfb4c6851a7ea55786a853eb6f305Virustotal results 46/70 (65.71%) 189.208.84.18650000Heodo
2018-12-13 11:34:14f1037a7ce2f426824cab513cab1739b3Virustotal results 14/70 (20.00%) 189.208.84.18650000Heodo
2018-12-12 19:15:2037409732a60a4531fc99b62d7c7695d4Virustotal results 15/58 (25.86%) 189.208.84.18650000Heodo

# of malware samples: 3