Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 192.254.173.31. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:192.254.173.31
Hostname:dra.dragcoverage.com
Status:Offline
Spamhaus SBL:SBL460947
Malware:Heodo -
AS number:AS46606
AS name:UNIFIEDLAYER-AS-1 - Unified Layer
Country:- US
First seen:2019-10-02 13:31:00 UTC
Last seen:2019-10-12 14:02:59 UTC
Last online:2019-10-12

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-10-13 03:42:28c6f311b63adb359b905cedb1c6da89ecVirustotal results 19 / 60 (31.67%) 192.254.173.318080Heodo
2019-10-13 03:31:43ecd8b59cdf1627e6478e98cf63b6dacfVirustotal results 13 / 59 (22.03%) 192.254.173.318080Heodo
2019-10-13 03:25:29ad8f14bed9c22cfd03f9980dcff9d4b8Virustotal results 15 / 58 (25.86%) 192.254.173.318080Heodo
2019-10-13 02:47:53c471f67aa5e7088b070b64e8999e72d4Virustotal results 19 / 60 (31.67%) 192.254.173.318080Heodo
2019-10-12 23:19:41e64cc37a374c4db84c7dcda38c4d9e6bVirustotal results 15 / 60 (25.00%) 192.254.173.318080Heodo
2019-10-12 14:13:50985799e66581ef777b52da4338130e6cVirustotal results 42 / 71 (59.15%) 192.254.173.318080Heodo
2019-10-11 18:22:46c3464f915a852f753b9694861f161977Virustotal results 22 / 69 (31.88%) 192.254.173.318080Heodo
2019-10-08 13:40:54745db6de6d67e9667f4e94139ad3066dVirustotal results 8 / 68 (11.76%) 192.254.173.318080Heodo
2019-10-08 11:34:20142964b3d7470705d15471ee181146aeVirustotal results 44 / 71 (61.97%) 192.254.173.318080Heodo
2019-10-08 09:54:202c0e1f44d857acce767ac2d6a99c8791Virustotal results 8 / 71 (11.27%) 192.254.173.318080Heodo
2019-10-08 09:02:45d26eacbec109848101eb184e6d9418a6Virustotal results 5 / 68 (7.35%) 192.254.173.318080Heodo
2019-10-08 04:46:448ec3601315e790a12399a03698979323Virustotal results 13 / 59 (22.03%) 192.254.173.318080Heodo
2019-10-08 03:34:109afcbf6f4f13a40791d368df767b4304Virustotal results 13 / 68 (19.12%) 192.254.173.318080Heodo
2019-10-08 03:22:1177060d4742cda8bbe372fb18d073efc6Virustotal results 13 / 59 (22.03%) 192.254.173.318080Heodo
2019-10-08 01:10:283e8d93cc6a1d3d0abd7441f0ad757bb8Virustotal results 12 / 59 (20.34%) 192.254.173.318080Heodo
2019-10-07 23:43:0939c51cc59429077325e5ca86f1158ea8Virustotal results 14 / 58 (24.14%) 192.254.173.318080Heodo
2019-10-07 20:27:46143cb2c38f0c5c21651cbe12303f38dcn/a192.254.173.318080Heodo
2019-10-07 20:27:2320204626637d37343a21ad5af1c20515Virustotal results 13 / 56 (23.21%) 192.254.173.318080Heodo
2019-10-07 20:25:37ca1f07098a3f2985d25ecb64c99cd9cbVirustotal results 18 / 58 (31.03%) 192.254.173.318080Heodo
2019-10-07 19:55:58c2e5b6016b1ff6b653a0388574b89b00n/a192.254.173.318080Heodo
2019-10-07 12:47:330640247b5eddbab7027b570742ca2be9n/a192.254.173.318080Heodo
2019-10-07 10:53:212fc158fc4ce768e82398ee62291ca281n/a192.254.173.318080Heodo
2019-10-07 10:12:1146d0d356e7591582024bdc85ddcca137Virustotal results 11 / 59 (18.64%) 192.254.173.318080Heodo
2019-10-07 10:07:2080489f47276b3fceb6f301c9870c2a66n/a192.254.173.318080Heodo
2019-10-05 02:45:111895bae36573513127e29a84b89a26abn/a192.254.173.318080Heodo
2019-10-04 01:43:24b62fc8d92f91c446ac0c625eb595e7c5Virustotal results 16 / 59 (27.12%) 192.254.173.318080Heodo
2019-10-03 02:56:45cfe068fd56fbf6b7a5df8716c5ff7d59Virustotal results 34/59 (57.63%) 192.254.173.318080Heodo
2019-10-02 19:19:179b0afa7b29e4844c3742c8d99489cc39Virustotal results 19 / 59 (32.20%) 192.254.173.318080Heodo

# of malware samples: 28