Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 198.199.112.197. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:198.199.112.197
Hostname:sirgecko.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS14061
AS name:DIGITALOCEAN-ASN
Country:- US
First seen:2020-01-09 21:44:19 UTC
Last seen:2020-01-16 18:14:15 UTC
Last online:2020-01-10

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-16 18:09:160957067f528407bb59eba0be5e7e99acVirustotal results 41 / 73 (56.16%) 198.199.112.1978080Heodo
2020-01-16 03:00:144e9887cb6752f98b2db47b5eeab48cd3Virustotal results 39 / 70 (55.71%) 198.199.112.1978080Heodo
2020-01-14 13:12:37ef8730cef2ea6ea5e08a3c19d57b72ffVirustotal results 41 / 71 (57.75%) 198.199.112.1978080Heodo
2020-01-14 12:57:05a98a8bd1277a68d310a20571282c5d46Virustotal results 42 / 73 (57.53%) 198.199.112.1978080Heodo
2020-01-13 16:28:576caab775d8e951af257994f050617f10n/a198.199.112.1978080Heodo
2020-01-13 15:42:10cdd02f2bc162bf685f239ba26b633da0n/a198.199.112.1978080Heodo
2020-01-13 15:35:224f90ceefc6a72aa9cc4205193b68d76fn/a198.199.112.1978080Heodo
2020-01-13 15:24:53ab74d45709c98a8add5e3e82fbc346d4Virustotal results 21 / 71 (29.58%) 198.199.112.1978080Heodo
2020-01-13 15:23:350518859b280ec2f5ecfb9e8cd5815d1fVirustotal results 22 / 69 (31.88%) 198.199.112.1978080Heodo
2020-01-13 15:09:22483d709c3402edb123582dd28187585an/a198.199.112.1978080Heodo
2020-01-12 15:47:590e539c962287d19b15202a4db917d30dVirustotal results 31 / 72 (43.06%) 198.199.112.1978080Heodo
2020-01-09 21:34:51495951aaea466ea67d72ccedbf8083a4Virustotal results 7 / 71 (9.86%) 198.199.112.1978080Heodo

# of malware samples: 12