Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.104.253.234. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.104.253.234
Hostname:static.234.253.104.190.cps.com.ar
Status:Offline
Spamhaus SBL:SBL460031
Malware:Heodo -
AS number:AS11014
AS name:CPS
Country:- AR
First seen:2019-09-19 18:37:04 UTC
Last seen:2019-10-14 14:44:35 UTC
Last online:2019-10-11

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-10-14 15:12:5160f64dd88a02cca12e79c3e005f15d8cVirustotal results 3 / 70 (4.29%) 190.104.253.234990Heodo
2019-10-12 12:53:463196d2acf3cbb377bb6aaf57a0651f55Virustotal results 35 / 59 (59.32%) 190.104.253.234990Heodo
2019-10-12 10:22:31ef76aca8c684e77c2957087d33d12aebVirustotal results 14 / 59 (23.73%) 190.104.253.234990Heodo
2019-10-09 16:40:522bb192b9c179958e6943a2a265b92bd6Virustotal results 6 / 69 (8.70%) 190.104.253.234990Heodo

# of malware samples: 4