Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.34.18.252. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.34.18.252
Hostname:bd2212fc.virtua.com.br
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS28573
AS name:CLARO S.A.
Country:- BR
First seen:2020-12-29 01:14:33 UTC
Last seen:2021-01-22 21:56:29 UTC
Last online:2021-01-11

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2021-01-23 03:45:006eb30460c2ef8aaaa935832005c73bdan/a189.34.18.2528080Heodo
2021-01-18 22:22:4665e16fb72630132a38e7b5f7cf274f51Virustotal results 55 / 69 (79.71%) 189.34.18.2528080Heodo
2021-01-13 23:08:1288c760380f817afbd815af6dfe718398n/a189.34.18.2528080Heodo
2021-01-10 20:16:345b2d0ecd37cbc0233328d00205cb5b94Virustotal results 53 / 69 (76.81%) 189.34.18.2528080Heodo
2021-01-07 22:27:5367648eaab66915022501d25e945ec0c5n/a189.34.18.2528080Heodo
2021-01-07 20:26:22279d6b7dbc0e48d11fcb9d3ffebf0374n/a189.34.18.2528080Heodo
2021-01-07 18:33:263d20255dce07369b1def21e27869c85en/a189.34.18.2528080Heodo
2021-01-07 15:45:11fbac2e159dfed082fc4988363196dd92n/a189.34.18.2528080Heodo
2021-01-07 15:45:07fc308f7349f686b765bc2628efc6dcc7Virustotal results 42 / 68 (61.76%) 189.34.18.2528080Heodo
2021-01-07 09:55:05c3ccaff5fb9aa9385f1ebb43f174d1e8n/a189.34.18.2528080Heodo
2021-01-07 09:54:55c3f541db640cb49c2709ad3f2a30ea2bVirustotal results 41 / 68 (60.29%) 189.34.18.2528080Heodo
2021-01-07 07:21:02f2a781fb98573abed67d831b10d1cef8n/a189.34.18.2528080Heodo
2021-01-07 02:57:41192bd5df827ec598974f4506272b619dn/a189.34.18.2528080Heodo
2021-01-07 00:41:104276eb35d91eb397765296efdb4b4e54n/a189.34.18.2528080Heodo
2021-01-06 22:47:314afd5c42cbd1cb19e1c2f75a2ce557aen/a189.34.18.2528080Heodo
2021-01-06 21:51:31f717eb1042e030d3f45f74ccdf7d206aVirustotal results 33 / 70 (47.14%) 189.34.18.2528080Heodo
2021-01-06 21:16:5361aba92536537d8744b0b9ce3f8bf3abn/a189.34.18.2528080Heodo
2021-01-06 19:26:27748aa0349d65fde4595d240d05cb30ean/a189.34.18.2528080Heodo
2021-01-06 19:16:270150131ef843c1b30e8233660fb76d3bn/a189.34.18.2528080Heodo
2021-01-06 19:08:50558939d5bf105b8fae6a508b55658223n/a189.34.18.2528080Heodo
2021-01-06 18:28:45ec8f5ddd94c4639a3d322908c70ff6e3n/a189.34.18.2528080Heodo
2021-01-06 18:14:4451d51a8755de80a357498424b9c5fb0en/a189.34.18.2528080Heodo
2021-01-06 15:33:04fe5e7c2621b78883feadf1c9646c8a65n/a189.34.18.2528080Heodo
2021-01-06 15:28:58f307e171cac465d574ae685ea910baefVirustotal results 31 / 69 (44.93%) 189.34.18.2528080Heodo
2021-01-06 15:20:33d1540b55475d6933d0b4b7102d00be9en/a189.34.18.2528080Heodo
2021-01-06 14:34:11b173f1fa50ffea8a4024065224880722n/a189.34.18.2528080Heodo
2021-01-06 14:22:2552a29f1c9eab75ef113c496f96f546f9n/a189.34.18.2528080Heodo
2021-01-06 14:22:09071fe945eea6ff7c8494a84ea7b842efn/a189.34.18.2528080Heodo
2021-01-06 13:37:062bba1898122037e158b583d456fa2424n/a189.34.18.2528080Heodo
2021-01-06 13:17:50108528ccae75616688d966276fc55050Virustotal results 31 / 70 (44.29%) 189.34.18.2528080Heodo
2021-01-06 12:27:330229e638ed94b4ddea0340a99e64ca39n/a189.34.18.2528080Heodo
2021-01-06 12:19:58958ca9b9539b9cf9f33e4dade3e71626Virustotal results 31 / 68 (45.59%) 189.34.18.2528080Heodo
2021-01-06 11:27:443a9708423e75d5eae6708b10714427b9n/a189.34.18.2528080Heodo
2021-01-06 10:42:1311093aeff2938fa5dbd2853a53a19911n/a189.34.18.2528080Heodo
2021-01-06 10:39:257242cf2c95d61c7f2655a29bb50fe81fn/a189.34.18.2528080Heodo
2021-01-06 10:32:467b5f08a63e75dddcae70fbbbfca5b0bbn/a189.34.18.2528080Heodo
2021-01-06 08:53:2489dd02677de8420d1b429ae2a059d782n/a189.34.18.2528080Heodo
2021-01-06 08:17:0349c0cbf5da643231e3138868eeea24d2n/a189.34.18.2528080Heodo
2021-01-06 07:57:58a58e0d02b239211c60f239f8be346ebbn/a189.34.18.2528080Heodo
2021-01-06 07:22:0550c640718bf6fda9b3de570c9915bbf8n/a189.34.18.2528080Heodo
2021-01-06 06:46:12dd609d1b2e0783e9197304a4a82d84ccVirustotal results 28 / 70 (40.00%) 189.34.18.2528080Heodo
2021-01-06 06:45:05afceab75ed03ab7bc83aaa9f17ab019bn/a189.34.18.2528080Heodo
2021-01-06 06:30:3777d0fe423d99ce97f364d13165885c0en/a189.34.18.2528080Heodo
2021-01-06 05:19:324e3761d89a2924b2f6a250b179781ecfn/a189.34.18.2528080Heodo
2021-01-06 04:22:57294452ae645820118f694533e42472e5n/a189.34.18.2528080Heodo
2021-01-06 03:49:56df2b662587f7fccd2e80a8be6ff7175fn/a189.34.18.2528080Heodo
2021-01-06 02:54:30e856f86761e75ba351684d705cfe77d9n/a189.34.18.2528080Heodo
2021-01-06 00:43:52f586462b929fb81f8254390aed1efe7cVirustotal results 26 / 70 (37.14%) 189.34.18.2528080Heodo
2021-01-06 00:11:150515053bab328b3d30afb28206424caen/a189.34.18.2528080Heodo
2021-01-05 23:50:1578bdbafc917f64029cf4435857f7013cn/a189.34.18.2528080Heodo
2021-01-05 23:29:07643918632f4635e6e523ae8a5f104e04n/a189.34.18.2528080Heodo
2021-01-05 21:45:172999c2e9ae1d913cecc19abb6b9577e1n/a189.34.18.2528080Heodo
2021-01-05 20:58:5847eb8c3d5dfb4aff5b8938215d828a13n/a189.34.18.2528080Heodo
2021-01-05 20:22:560f0d2eaf7d59c7da950a3e9d48a16f69n/a189.34.18.2528080Heodo
2021-01-05 19:28:36fc197b6ec68ea5f2ccaa6eed1f05c258Virustotal results 24 / 70 (34.29%) 189.34.18.2528080Heodo
2021-01-05 19:02:45f71e306390a2488eea8b63e6a44f5b0en/a189.34.18.2528080Heodo
2021-01-05 18:24:24f0772faffc7122f3550dc4865844e6e9n/a189.34.18.2528080Heodo
2021-01-05 18:07:30f83595faa6d9b4f3346e7744227dd00an/a189.34.18.2528080Heodo
2021-01-05 17:49:55e44e42b7cdbd0d39e4c11ced8c3ad71bn/a189.34.18.2528080Heodo
2021-01-05 07:50:12427c5b0b21983a22d53ca4def624d64aVirustotal results 45 / 70 (64.29%) 189.34.18.2528080Heodo
2021-01-04 20:59:490daf384f571553608263f4b39f7a9167n/a189.34.18.2528080Heodo
2020-12-29 21:22:19fd03303beedcebe650fc7e438f4e5354n/a189.34.18.2528080Heodo
2020-12-29 20:30:393f374cc6e8d506a9f7b254546768f31cn/a189.34.18.2528080Heodo
2020-12-29 19:14:44c11604fc198cdceef156930d8fa63c3fn/a189.34.18.2528080Heodo
2020-12-29 18:31:062ea4f6e7f5cdfa5c14e5599aca1a552cn/a189.34.18.2528080Heodo
2020-12-29 17:43:427c563d26ad453fb18661ca214ac4d45cn/a189.34.18.2528080Heodo
2020-12-29 17:28:194dc15d89cf38278df51de3ecbf6c6d76n/a189.34.18.2528080Heodo
2020-12-29 17:28:194dc15d89cf38278df51de3ecbf6c6d76n/a189.34.18.2528080Heodo
2020-12-29 17:26:27abe8c1f7b7339115376b5b3476e075ean/a189.34.18.2528080Heodo
2020-12-29 16:35:356b10cbf48106475c385416258cce0fben/a189.34.18.2528080Heodo
2020-12-29 16:04:07489e21884bb19320bfde390ee08bcaf0n/a189.34.18.2528080Heodo
2020-12-29 16:04:07489e21884bb19320bfde390ee08bcaf0n/a189.34.18.2528080Heodo
2020-12-29 12:18:17934a4f3d578d13ca937b989f3a9fa9ben/a189.34.18.2528080Heodo
2020-12-29 11:55:042f7723b36c4ccfdbfcb6b85e5aa57cban/a189.34.18.2528080Heodo
2020-12-29 10:57:56664578db31b8f0c13bf94bab5b3c6525n/a189.34.18.2528080Heodo
2020-12-29 10:24:42ba880edfea541e888c50f88018132d1en/a189.34.18.2528080Heodo
2020-12-29 08:10:31030e78043df42f96c15c676f3193c624n/a189.34.18.2528080Heodo
2020-12-29 02:13:14a8e48fa2cb6f794e5f73febd7302d089n/a189.34.18.2528080Heodo
2020-12-29 01:24:166fd09d3b2dbe976504774c43e15e08cdn/a189.34.18.2528080Heodo

# of malware samples: 79