Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.171.216.50. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.171.216.50
Hostname:static-ip-adsl-190.171.216.50.cotas.com.bo
Status:Offline
Spamhaus SBL:SBL426589
Malware:Heodo -
AS number:AS25620
AS name:COTAS LTDA.
Country:- BO
First seen:2018-12-10 20:02:37 UTC
Last seen:2018-12-11 15:44:22 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-11 15:53:308c83e9f16290f9fa0cd1b24c3116ecdaVirustotal results 41/59 (69.49%) 190.171.216.50443Heodo
2018-12-11 15:19:328a88c6f818c342fd7706f5668254ab87Virustotal results 22/57 (38.60%) 190.171.216.50443Heodo
2018-12-11 14:58:267554f0fff44fc6ac032a0c65ac93fd79Virustotal results 21/59 (35.59%) 190.171.216.50443Heodo
2018-12-11 14:42:583031bd0bf15ff3ded106d5dba899cda1Virustotal results 21/60 (35.00%) 190.171.216.50443Heodo
2018-12-11 13:48:3296a949b028d8c657b1697a88e437883fVirustotal results 40/59 (67.80%) 190.171.216.50443Heodo
2018-12-11 13:25:38bd0fe9c1ddac92333decc0944b2cab5fVirustotal results 32/60 (53.33%) 190.171.216.50443Heodo
2018-12-11 10:04:131dabdb6851f266a6e9b2d1b8489cbe83Virustotal results 31/58 (53.45%) 190.171.216.50443Heodo
2018-12-11 08:08:2769e51e469d60f4ca70bf5ddef9a72ce4Virustotal results 52/70 (74.29%) 190.171.216.50443Heodo
2018-12-10 22:11:39fc795a71bd5c1f903cafc2fd06a496d8Virustotal results 23/59 (38.98%) 190.171.216.50443Heodo
2018-12-10 22:00:452ab905bcad2fb98c0bd01ba0cb7dd044Virustotal results 24/59 (40.68%) 190.171.216.50443Heodo

# of malware samples: 10