Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 189.55.48.40. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:189.55.48.40
Hostname:bd373028.virtua.com.br
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS28573
AS name:CLARO S.A.
Country:- BR
First seen:2020-11-09 16:44:20 UTC
Last seen:2020-11-22 20:26:42 UTC
Last online:2020-11-10

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-11-23 00:19:1664a041c5ede4495f3902c881f0c96dbbVirustotal results 42 / 72 (58.33%) 189.55.48.4080Heodo
2020-11-22 18:40:51cb1d6527a14cd9d7a3726da3ec8b9327n/a189.55.48.4080Heodo
2020-11-22 04:07:59a2caa0d72ed695129bcacad9967390ccVirustotal results 23 / 71 (32.39%) 189.55.48.4080Heodo

# of malware samples: 3