Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.56.149.122. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.56.149.122
Hostname:122.149.56.190.static.intelnet.net.gt
Status:Offline
Spamhaus SBL:SBL426597
Malware:Heodo -
AS number:AS14754
AS name:Telgua
Country:- GT
First seen:2018-12-10 13:24:55 UTC
Last seen:2019-01-08 08:01:11 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 22:18:24f1cfc14ccbd1eff821444f8bcf6c400bVirustotal results 12/69 (17.39%) 190.56.149.122443Heodo
2018-12-10 19:25:27b7d6901906a5c36fcbc95856293e2f12Virustotal results 19/59 (32.20%) 190.56.149.122443Heodo
2018-12-10 17:38:30e1d3ea95ffebeba6a3d0201b60822263Virustotal results 38/60 (63.33%) 190.56.149.122443Heodo
2018-12-10 16:32:08608deb26343f4a500dd35ca7f7a3b5f1Virustotal results 36/60 (60.00%) 190.56.149.122443Heodo

# of malware samples: 4