Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.192.113.159. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.192.113.159
Hostname:159-113-192-190.cab.prima.net.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10481
AS name:Prima S.A.
Country:- AR
First seen:2019-04-11 15:14:43 UTC
Last seen:2019-05-02 12:34:20 UTC
Last online:2019-04-15

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-05-01 12:44:188c1d232a24327503904c11d5e0393a58Virustotal results 52/71 (73.24%) 190.192.113.15921Heodo
2019-04-15 10:25:22fef6c70387ea69b93dff509df97725aeVirustotal results 48/67 (71.64%) 190.192.113.15921Heodo
2019-04-15 05:50:29a40c46d2c283a3d987ae1067e2d69126Virustotal results 49/66 (74.24%) 190.192.113.15921Heodo
2019-04-13 21:03:257801633bc02930de0bec0eb06c02b0ffVirustotal results 47/67 (70.15%) 190.192.113.15921Heodo
2019-04-13 16:19:22502d5dcc375c8df5970c4bd31785ee41Virustotal results 43/67 (64.18%) 190.192.113.15921Heodo
2019-04-11 13:04:471d28f78c19eaf9b44f00f37324f3013fVirustotal results 46/66 (69.70%) 190.192.113.15921Heodo

# of malware samples: 6