Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 191.103.76.34. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:191.103.76.34
Hostname:n/a
Status:Offline
Spamhaus SBL:SBL471143
Malware:Heodo -
AS number:AS23383
AS name:METRORED S.A. DE C.V.
Country:- HN
First seen:2019-12-05 07:28:04 UTC
Last seen:2019-12-20 08:42:26 UTC
Last online:2020-01-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-20 08:20:4989602f56d49b18824e6fcff7991c2fe1Virustotal results 6 / 73 (8.22%) 191.103.76.34443Heodo
2019-12-11 18:03:13a54e1062beaec284c9186baed325def2n/a191.103.76.34443Heodo
2019-12-07 15:21:2487b3f724deefb7c6443e10cf9e7fa407Virustotal results 43 / 71 (60.56%) 191.103.76.34443Heodo
2019-12-07 11:45:413d641d01f32e761bd01733f4229acd2bVirustotal results 10 / 72 (13.89%) 191.103.76.34443Heodo
2019-12-05 07:38:0419135888b3105fd4b27a6faf3b6f5da3Virustotal results 6 / 72 (8.33%) 191.103.76.34443Heodo

# of malware samples: 5