Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 190.56.255.118. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:190.56.255.118
Hostname:118.255.56.190.dynamic.intelnet.net.gt
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS14754
AS name:Telgua
Country:- GT
First seen:2018-12-10 20:02:40 UTC
Last seen:2018-12-11 15:44:22 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-11 15:53:308c83e9f16290f9fa0cd1b24c3116ecdaVirustotal results 41/59 (69.49%) 190.56.255.11880Heodo
2018-12-11 14:58:267554f0fff44fc6ac032a0c65ac93fd79Virustotal results 21/59 (35.59%) 190.56.255.11880Heodo
2018-12-11 14:44:26b291752352525c918fc6ebe4c8b04d9eVirustotal results 17/69 (24.64%) 190.56.255.11880Heodo
2018-12-11 13:48:3296a949b028d8c657b1697a88e437883fVirustotal results 40/59 (67.80%) 190.56.255.11880Heodo
2018-12-11 13:25:38bd0fe9c1ddac92333decc0944b2cab5fVirustotal results 32/60 (53.33%) 190.56.255.11880Heodo
2018-12-11 10:04:131dabdb6851f266a6e9b2d1b8489cbe83Virustotal results 31/58 (53.45%) 190.56.255.11880Heodo
2018-12-11 10:04:131dabdb6851f266a6e9b2d1b8489cbe83Virustotal results 31/58 (53.45%) 190.56.255.11880Heodo
2018-12-11 08:08:2769e51e469d60f4ca70bf5ddef9a72ce4Virustotal results 52/70 (74.29%) 190.56.255.11880Heodo
2018-12-10 22:11:39fc795a71bd5c1f903cafc2fd06a496d8Virustotal results 23/59 (38.98%) 190.56.255.11880Heodo
2018-12-10 22:00:452ab905bcad2fb98c0bd01ba0cb7dd044Virustotal results 24/59 (40.68%) 190.56.255.11880Heodo

# of malware samples: 10