Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.192.113.159. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.192.113.159
Hostname:159-113-192-190.cab.prima.net.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10481
AS name:Prima S.A.
Country:- AR
First seen:2019-04-11 15:14:43 UTC
Last seen:2019-10-09 22:54:34 UTC
Last online:2019-04-15

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-05-01 12:44:188c1d232a24327503904c11d5e0393a58Virustotal results 52/71 (73.24%) 190.192.113.15921Heodo
2019-04-15 10:25:22fef6c70387ea69b93dff509df97725aeVirustotal results 48/67 (71.64%) 190.192.113.15921Heodo
2019-04-15 05:50:29a40c46d2c283a3d987ae1067e2d69126Virustotal results 49/66 (74.24%) 190.192.113.15921Heodo
2019-04-14 20:59:564c4e406739e9cfd42f1b049e3ff8d1dbVirustotal results 47/67 (70.15%) 190.192.113.15921Heodo
2019-04-14 12:25:09fcc762e18b5641ed0e2a8a0ddcda8f87Virustotal results 52/72 (72.22%) 190.192.113.15921Heodo
2019-04-13 21:03:257801633bc02930de0bec0eb06c02b0ffVirustotal results 47/67 (70.15%) 190.192.113.15921Heodo
2019-04-13 16:19:22502d5dcc375c8df5970c4bd31785ee41Virustotal results 43/67 (64.18%) 190.192.113.15921Heodo
2019-04-13 16:03:20c0221913a5706615c5f40b13f012bf44Virustotal results 42/65 (64.62%) 190.192.113.15921Heodo
2019-04-11 13:04:471d28f78c19eaf9b44f00f37324f3013fVirustotal results 46/66 (69.70%) 190.192.113.15921Heodo
2019-04-11 13:02:488fd28ff96e12df80a30dd653119deff3Virustotal results 44/67 (65.67%) 190.192.113.15921Heodo

# of malware samples: 10