Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.56.149.122. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.56.149.122
Hostname:n/a
Status:Offline
Spamhaus SBL:SBL426597
Malware:Heodo -
AS number:AS14754
AS name:Telgua
Country:- GT
First seen:2018-12-10 13:24:55 UTC
Last seen:2018-12-10 14:55:00 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 22:18:24f1cfc14ccbd1eff821444f8bcf6c400bVirustotal results 12/69 (17.39%) 190.56.149.122443Heodo
2018-12-11 07:00:1376efdf39ce4aa04d29a263007d65278dVirustotal results 47/70 (67.14%) 190.56.149.122443Heodo
2018-12-10 23:06:123e62cb6753a8c095568ab223b5ce20e8Virustotal results 9/70 (12.86%) 190.56.149.122443Heodo
2018-12-10 22:01:017bb79832eca853cd84b5ae35058a25ecVirustotal results 12/70 (17.14%) 190.56.149.122443Heodo
2018-12-10 21:09:588e5ffeab6266b7822bd14591b75bc123Virustotal results 41/69 (59.42%) 190.56.149.122443Heodo
2018-12-10 20:56:033b624154e54fe759acb03de7363c6e7dVirustotal results 12/69 (17.39%) 190.56.149.122443Heodo
2018-12-10 19:42:103fdd99e8d0e1ae46988ed92759ffab3cVirustotal results 44/70 (62.86%) 190.56.149.122443Heodo

# of malware samples: 7