Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 198.211.121.27. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:198.211.121.27
Hostname:turkishleaks.org-serv4
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS14061
AS name:DIGITALOCEAN-ASN
Country:- NL
First seen:2020-01-31 14:26:11 UTC
Last seen:2020-02-07 19:31:44 UTC
Last online:2020-02-17

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-02-14 03:28:48e1174f9afa461fa22d4969f983f95385Virustotal results 9 / 71 (12.68%) 198.211.121.278080Heodo
2020-02-08 13:42:53b263d4a45acbbada419191fdbd6d5b8eVirustotal results 18 / 70 (25.71%) 198.211.121.278080Heodo
2020-02-08 12:49:37b62ea0346bf97be9e9940596d436b74aVirustotal results 55 / 73 (75.34%) 198.211.121.278080Downloader.Upatre
2020-02-06 21:24:05b0f1a7610fa8bfce13a49b519407073cVirustotal results 9 / 72 (12.50%) 198.211.121.278080Heodo
2020-02-05 21:15:2868088dcf91f9b7010ed90c6ed078bcbfVirustotal results 21 / 72 (29.17%) 198.211.121.278080Heodo
2020-02-05 20:28:054b9fe01f2c988e865dd948c386c868a6Virustotal results 24 / 71 (33.80%) 198.211.121.278080Heodo
2020-02-05 16:51:30343cd9929a0df51e2017a33680cbaf69Virustotal results 15 / 60 (25.00%) 198.211.121.278080Heodo
2020-02-05 16:49:59056d978513163a387c26cdbe19d8c248Virustotal results 16 / 61 (26.23%) 198.211.121.278080Heodo
2020-02-05 16:46:42947a4826e9a4cacd6c358a7c145fbb2eVirustotal results 22 / 72 (30.56%) 198.211.121.278080Heodo
2020-02-05 16:25:00bbfaae6723211c030db2eb02b65ae3b5Virustotal results 20 / 72 (27.78%) 198.211.121.278080Heodo
2020-02-05 14:37:107cc8c7eff240f9d00e2dbd6df9acefa3Virustotal results 26 / 72 (36.11%) 198.211.121.278080Heodo
2020-02-05 14:03:238231de84912232e55bfb5b5e893bc6b9Virustotal results 18 / 71 (25.35%) 198.211.121.278080Heodo
2020-02-05 13:44:21325e91fb17a555848f713560293223fan/a198.211.121.278080Heodo
2020-02-05 12:43:47610946f65163fab89f4ced50c93cf1d1Virustotal results 17 / 61 (27.87%) 198.211.121.278080Heodo
2020-02-05 12:38:153cc290e0607d6a32c62de76002c66716Virustotal results 20 / 71 (28.17%) 198.211.121.278080Heodo
2020-02-05 12:36:407cfd84191e07bc89cc4813737e72151cVirustotal results 20 / 71 (28.17%) 198.211.121.278080Heodo
2020-02-05 12:36:2352a407d4536b7592ae5c5de540b966a3Virustotal results 17 / 60 (28.33%) 198.211.121.278080Heodo
2020-02-05 12:05:531c1ed50504c471563e940abcd2b5f1bfVirustotal results 16 / 61 (26.23%) 198.211.121.278080Heodo
2020-02-05 11:30:08759fc2270ad8617424349e1b9ee549e5n/a198.211.121.278080Heodo
2020-02-05 10:46:28a828fbca7b6f612a3a38ed61b8563847n/a198.211.121.278080Heodo
2020-02-05 10:17:51d5db06402fb84c58b61ccf33de858053Virustotal results 13 / 71 (18.31%) 198.211.121.278080Heodo
2020-02-05 10:04:01c1328a59e5446c01f09146b79e6aeb11Virustotal results 16 / 58 (27.59%) 198.211.121.278080Heodo
2020-02-05 10:01:4447a714d1c5087d6b77323f5ca51ffa00Virustotal results 16 / 59 (27.12%) 198.211.121.278080Heodo
2020-02-05 09:52:52b4f9cb1bec426320b965c322019591b0Virustotal results 16 / 59 (27.12%) 198.211.121.278080Heodo
2020-02-05 09:15:519d12ccb467c1950f50a2c419b29f9125Virustotal results 16 / 58 (27.59%) 198.211.121.278080Heodo
2020-02-05 08:57:55d560e6a492fbcc706ccae2dcb92d10e9Virustotal results 16 / 61 (26.23%) 198.211.121.278080Heodo
2020-02-05 08:55:303ee8cb53b952f2afc118d5dc43496c98Virustotal results 9 / 72 (12.50%) 198.211.121.278080Heodo
2020-02-05 08:49:0763eab41e58c93e4b09d79b80e7f17a42Virustotal results 16 / 59 (27.12%) 198.211.121.278080Heodo
2020-02-05 08:03:088932a877f1da1bc42913e2fa3be3ebc5Virustotal results 16 / 61 (26.23%) 198.211.121.278080Heodo
2020-02-05 07:38:4864628becf5f6517af70c52d5f7f65c3dVirustotal results 16 / 59 (27.12%) 198.211.121.278080Heodo
2020-02-05 06:30:053917a27e123f649a2ef34a9a9507078aVirustotal results 22 / 71 (30.99%) 198.211.121.278080Heodo
2020-02-05 06:04:025c187dfc843ddaa56b2ef4cc84e8bafeVirustotal results 22 / 72 (30.56%) 198.211.121.278080Heodo
2020-02-05 04:53:5464e13a35311741819b70cd87a751f9e7Virustotal results 19 / 70 (27.14%) 198.211.121.278080Heodo
2020-02-04 23:23:53436968939114624fb36af90f30e6840bVirustotal results 15 / 71 (21.13%) 198.211.121.278080Heodo
2020-02-04 22:16:52cedc2bd1253bd1f8f129ab14849d8cd9Virustotal results 8 / 69 (11.59%) 198.211.121.278080Heodo
2020-02-04 20:42:318306d4d147233fd52fd89a2feff8aed8n/a198.211.121.278080Heodo
2020-02-04 19:46:2567423f3cbfab1310842c22a65112c6bcVirustotal results 8 / 72 (11.11%) 198.211.121.278080Heodo
2020-02-04 18:53:33969e2b013bddd88ad87ca2e6d92e99aen/a198.211.121.278080Heodo
2020-02-04 18:11:2990c17a67bf1cd449a1a02b8313e0baedn/a198.211.121.278080Heodo
2020-02-04 18:02:38490f0d2b763c404dec9808e9c3c1e52bn/a198.211.121.278080Heodo
2020-02-04 17:46:18963e5e6e382e5bbaaae408a7e9b84been/a198.211.121.278080Heodo
2020-02-04 17:38:14e7eb40c6d7bd5617f18c4a7fb1c08d62n/a198.211.121.278080Heodo
2020-02-04 17:34:03db4bfffdaf21e71a30db50cadf160636Virustotal results 7 / 71 (9.86%) 198.211.121.278080Heodo
2020-02-04 17:34:02e4318e6d1d233bf6cbbb5615d960c0adVirustotal results 9 / 72 (12.50%) 198.211.121.278080Heodo
2020-02-04 17:21:3753de5ed78b56d84f4bf358609aca1466n/a198.211.121.278080Heodo
2020-02-04 17:10:5434cc8e0a47018bc16ee40add5a4dbd34Virustotal results 13 / 73 (17.81%) 198.211.121.278080Heodo
2020-02-04 17:03:568c88da62d185e758ca6e229cca86e445n/a198.211.121.278080Heodo
2020-02-04 17:01:4042e074add216d44af48f063754879d32n/a198.211.121.278080Heodo
2020-02-04 16:54:05e92617403679ff31eba8d38f69eea6bfn/a198.211.121.278080Heodo
2020-02-04 16:54:00328e9e771f4585cee33b16633be8093fVirustotal results 8 / 71 (11.27%) 198.211.121.278080Heodo
2020-02-04 16:51:50a34cd7ee2a8425ad86974fb4f6a4cb68n/a198.211.121.278080Heodo
2020-02-04 16:45:17315da9b77edf415e2628e0ea20ffbacdn/a198.211.121.278080Heodo
2020-02-04 16:25:4315de986528ebe5b39e3043248a42f003n/a198.211.121.278080Heodo
2020-02-04 16:21:4925da981d06b4d9c7b12740db87c4fdc1n/a198.211.121.278080Heodo
2020-02-04 16:15:59c90eecdd69b5b76fba34509f061cd7e4n/a198.211.121.278080Heodo
2020-02-04 16:13:3291aec493f88484b9410c086f8eb90e7fVirustotal results 10 / 72 (13.89%) 198.211.121.278080Heodo
2020-02-04 16:11:49845068d4aa276446d6ed2dc9c5173918Virustotal results 8 / 72 (11.11%) 198.211.121.278080Heodo
2020-02-04 16:03:57dbf123fef97ca4bfc46a87638b422e39n/a198.211.121.278080Heodo
2020-02-04 16:03:29ce1e4e5843538371b71b0328c81ec3c7n/a198.211.121.278080Heodo
2020-02-04 16:00:4998d5534c764dba3b1b3cfbebb899c1e5Virustotal results 13 / 72 (18.06%) 198.211.121.278080Heodo
2020-02-04 15:59:33cd34d9a5e647b39a763360b4a82d27b5n/a198.211.121.278080Heodo
2020-02-04 15:39:311475ae510613c0271d8dc1214e833919Virustotal results 24 / 63 (38.10%) 198.211.121.278080Heodo
2020-02-04 15:34:49afae21a90e81f3d6ad4f63d3a7f3d950Virustotal results 24 / 63 (38.10%) 198.211.121.278080Heodo
2020-02-04 15:21:4913c80d060e0999d91b677aa9e61f60f1Virustotal results 10 / 72 (13.89%) 198.211.121.278080Heodo
2020-02-04 14:50:5082f3139c9f968a3fa065cd9ccfb6fe6en/a198.211.121.278080Heodo
2020-02-04 14:50:45d395f48f95259b926fee0b9084573756n/a198.211.121.278080Heodo
2020-02-04 14:43:5153651796e01045ac69b11a52d6eddd00n/a198.211.121.278080Heodo
2020-02-04 14:30:408c90af989b96db7a00b203d1f13241bdn/a198.211.121.278080Heodo
2020-02-04 14:09:398927b6adec10307b3445b850660c373an/a198.211.121.278080Heodo
2020-02-04 13:21:2810ffadf1ceb0a5f8348a010763add58bVirustotal results 22 / 71 (30.99%) 198.211.121.278080Heodo
2020-02-04 12:18:2090cbbc959876ab231c12a994065de381n/a198.211.121.278080Heodo
2020-02-04 12:14:05ae3a10ceb58b68fbe9368bb8efaa0ba0n/a198.211.121.278080Heodo
2020-02-04 12:00:26d8d3ff5f375e1f57e9f98f0bb2e72d66n/a198.211.121.278080Heodo
2020-02-04 12:00:04c236d9450da0d61dc00f35cf78500b18n/a198.211.121.278080Heodo
2020-02-04 11:25:515e45a2b966a1da89f57b58ae772bdaden/a198.211.121.278080Heodo
2020-02-04 11:13:17e43bf311fea529def42f13d2a0492a14Virustotal results 22 / 62 (35.48%) 198.211.121.278080Heodo
2020-02-04 11:02:05c46c7a4e8f75dcd3066eaf7f7242036dVirustotal results 21 / 70 (30.00%) 198.211.121.278080Heodo
2020-02-04 11:01:0156791cfdb1c914d66a8d7ee9d7c338afn/a198.211.121.278080Heodo
2020-02-04 10:40:25068df0308d1833c356a306a48e10a6e5n/a198.211.121.278080Heodo
2020-02-04 10:04:0745c1dc5e8ce8f48f48ee38e34ac0e76en/a198.211.121.278080Heodo
2020-02-04 09:48:160a62f1c7c1dbdd04d915b0239a70ad52n/a198.211.121.278080Heodo
2020-02-04 09:39:40f8869d08954b33c782ccd3e394062570n/a198.211.121.278080Heodo
2020-02-04 09:17:2943ab5abe54659c82b40e1cabde44280en/a198.211.121.278080Heodo
2020-02-04 09:15:30e7158d5c071ca760b611e9492b121272n/a198.211.121.278080Heodo
2020-02-04 08:59:44fd28957cce6ab7958ed14ef828c22d33n/a198.211.121.278080Heodo
2020-02-04 08:53:4722546ec4b103552c7c52b02c6e2f5584n/a198.211.121.278080Heodo
2020-02-04 08:47:59124586e914d5c1cb34eaa2984349c9e9n/a198.211.121.278080Heodo
2020-02-04 08:44:11f0d5f0af89a61948139134ac604cbdc0n/a198.211.121.278080Heodo
2020-02-04 08:33:1217224509e4c5b27fbfd6c2112ca5d584n/a198.211.121.278080Heodo
2020-02-04 08:27:256aa2fde7f81730ad4e4a911537fe8a98n/a198.211.121.278080Heodo
2020-02-04 08:21:008542d43d2f5f13f20138271cca3670bdVirustotal results 21 / 62 (33.87%) 198.211.121.278080Heodo
2020-02-04 07:57:5410aeab9c06bd0784ac355223b4f748f3n/a198.211.121.278080Heodo
2020-02-04 07:57:486abedfa9172be81ddabc0fdacd0daf16n/a198.211.121.278080Heodo
2020-02-04 07:49:517f6d9178d16f70276c155fd15f81052fn/a198.211.121.278080Heodo
2020-02-03 13:43:208a1a47cf19419ac134638b1617ca5bfdn/a198.211.121.278080Heodo
2020-02-03 13:40:204dbf2a9c0feb3bcb5255ac1d73403956n/a198.211.121.278080Heodo
2020-02-03 13:31:2192820dcf47a7b0e3e13f9dfa0ba7a974n/a198.211.121.278080Heodo
2020-02-03 13:25:55f13f07328af89e1a983415d247cbb9e8n/a198.211.121.278080Heodo
2020-02-03 13:15:318eebea15a9e972eec03ed7905c92d7f8n/a198.211.121.278080Heodo
2020-02-03 13:13:111119dfc3d4df237220e9b3981e80c28en/a198.211.121.278080Heodo
2020-02-03 13:06:42e1635e4fe8697d96fb4f620dffdab9f0n/a198.211.121.278080Heodo
2020-02-03 13:05:028d7fb2c88a1aec3f53e317c94461c456n/a198.211.121.278080Heodo
2020-02-03 12:56:0976932591b3e887b9b847c7a3085662f3n/a198.211.121.278080Heodo
2020-02-03 12:56:03eaa1a6207df19f7463a27049b1bbd65an/a198.211.121.278080Heodo
2020-02-03 12:54:17af2d32b031d51711fdb55b622eec44e7n/a198.211.121.278080Heodo
2020-02-03 12:48:44a596516442eac1ef93c0d4474d219c28n/a198.211.121.278080Heodo
2020-02-03 12:43:41dcc1b41398f394fabdebb3736f6dc9cfn/a198.211.121.278080Heodo
2020-02-03 12:36:58e9c64033de58f146b8a22fc52560657bn/a198.211.121.278080Heodo
2020-02-03 12:33:3500449419dbad498443cb1046a97236a3n/a198.211.121.278080Heodo
2020-02-03 12:23:3208e5c4ff52cef1d91106bc73bc594a3cn/a198.211.121.278080Heodo
2020-02-03 12:21:25d9eade4b868cefbba49a97f7fbb9c8e8n/a198.211.121.278080Heodo
2020-02-03 12:12:31b1417b3ff0191c671b57369ee74ad0fcn/a198.211.121.278080Heodo
2020-02-03 12:00:486bc3108087f34d59a66fcd1bd9f31f24n/a198.211.121.278080Heodo
2020-02-03 11:52:50a6f633c0e53d5ca7792fcda55daf72den/a198.211.121.278080Heodo
2020-02-03 11:23:55082ea18877f60eb51064e9554bc7eb86n/a198.211.121.278080Heodo
2020-02-03 11:10:28e7a0e337dd42dcf6f27d92f946d71f99Virustotal results 18 / 63 (28.57%) 198.211.121.278080Heodo
2020-02-03 11:05:41e6a37369752440841e1d432816cc20f9n/a198.211.121.278080Heodo
2020-02-03 10:43:31710dbcf9c72e22f8150c2b95d1cc5cb7n/a198.211.121.278080Heodo
2020-02-03 10:36:56454f7eafd76b350b285c6e76b95c5deen/a198.211.121.278080Heodo
2020-02-03 10:35:11c06cf749cce0b167a94401a44ca7b52dn/a198.211.121.278080Heodo
2020-02-03 10:26:3364b28967ef2f8c4947cd7a1996629ff8n/a198.211.121.278080Heodo
2020-02-03 10:19:4201781df9b07305cbae4a63b16dd90c2an/a198.211.121.278080Heodo
2020-02-03 10:16:045e757a70b1852c70be0276f47c20b8a9n/a198.211.121.278080Heodo
2020-02-03 10:08:55f66131a3baace5334b34980b16b9348fn/a198.211.121.278080Heodo
2020-02-03 10:04:2913e7e7caf40661cbfac326b7555d2d1bn/a198.211.121.278080Heodo
2020-02-03 09:53:48d55bf433a6f04d47a1a2decc2a36c1e0n/a198.211.121.278080Heodo
2020-02-03 09:37:100efe7920ea2f9fb59624ac22527c6814n/a198.211.121.278080Heodo
2020-02-03 09:17:206f02bebd51bc758fd78ac949bf2e4408n/a198.211.121.278080Heodo
2020-02-03 09:16:23c53dfc5044045e439e434b04083acfcen/a198.211.121.278080Heodo
2020-02-01 13:25:16c4130512591224dfd3282290a4b5f6fbVirustotal results 24 / 64 (37.50%) 198.211.121.278080Heodo
2020-02-01 13:12:43c1598708f7f6c489a6c941c5d3abdde8Virustotal results 25 / 71 (35.21%) 198.211.121.278080Heodo
2020-02-01 10:28:005a82ad535c226bdd1f74f9b1d44d4b61Virustotal results 27 / 72 (37.50%) 198.211.121.278080Heodo
2020-02-01 07:30:372d071a545f2bb8e277f2a5237d4b47fcVirustotal results 23 / 72 (31.94%) 198.211.121.278080Heodo
2020-02-01 06:32:29a0c132193e4a4a9949401405c3bf5279Virustotal results 19 / 71 (26.76%) 198.211.121.278080Heodo
2020-02-01 04:41:06b7dd928e20ec3cacae2396932f8949e0Virustotal results 14 / 72 (19.44%) 198.211.121.278080Heodo
2020-02-01 02:15:140df9b0d01f029474d043e7d64d0d8c56n/a198.211.121.278080Heodo
2020-02-01 02:14:30df19279c1bb67daf9914f0a6e1d48120Virustotal results 14 / 72 (19.44%) 198.211.121.278080Heodo
2020-02-01 02:11:4423c0ff82ab0ae53e9e490fccb220ae21Virustotal results 14 / 72 (19.44%) 198.211.121.278080Heodo
2020-02-01 02:10:299f230572224c04c3d4b91a38ceeaec98Virustotal results 12 / 67 (17.91%) 198.211.121.278080Heodo
2020-02-01 02:09:118e82e40511050b39f8b6f9ef251dccb0Virustotal results 14 / 72 (19.44%) 198.211.121.278080Heodo
2020-02-01 02:04:1857d9ef248450c365c91ba24188eee77dn/a198.211.121.278080Heodo
2020-02-01 01:27:42b7c0c1dfd9e66bbd33604eb2b1e47c41n/a198.211.121.278080Heodo
2020-02-01 01:21:4189d354f8f3209f0befc46e1a1128daf2Virustotal results 12 / 72 (16.67%) 198.211.121.278080Heodo
2020-02-01 01:14:3285081a49f54c488c9a48959f613b9fa6n/a198.211.121.278080Heodo
2020-02-01 01:09:5354fcc3809aec0b2d8cae6eb9f3ccc2d8Virustotal results 12 / 73 (16.44%) 198.211.121.278080Heodo
2020-02-01 01:09:17008273bd399cad39d0bfc70821350eddVirustotal results 13 / 73 (17.81%) 198.211.121.278080Heodo
2020-02-01 01:08:370b440040bb70ae8e2dd75c2de38026abVirustotal results 13 / 71 (18.31%) 198.211.121.278080Heodo
2020-02-01 00:56:0597b784615e489de54962455623b22341n/a198.211.121.278080Heodo
2020-02-01 00:23:253240d02a6e697adcc412ffcb1057d5c1n/a198.211.121.278080Heodo
2020-02-01 00:17:275cd44688534a8dfae930f28e3bf9ac1fn/a198.211.121.278080Heodo
2020-02-01 00:08:3001008479966f717041d302f2bb0de376Virustotal results 12 / 72 (16.67%) 198.211.121.278080Heodo
2020-02-01 00:07:5045f5d2a06ae3b7c34acdd0c1ece8f667n/a198.211.121.278080Heodo
2020-01-31 23:56:0103843afa429998cb2d8a0fdbd255e7f4n/a198.211.121.278080Heodo
2020-01-31 23:54:4446212755d98ca90bad4edc731b1b6011n/a198.211.121.278080Heodo
2020-01-31 23:33:3064b6aa9c3de13c8377d82f3ba45b9f93n/a198.211.121.278080Heodo
2020-01-31 23:03:450cd49fa27b79e430f0d6e1d01b081c9bn/a198.211.121.278080Heodo
2020-01-31 22:58:37fb57302e3b18b9f33f29d4d61df3fc6an/a198.211.121.278080Heodo
2020-01-31 22:54:18a4cce88f1b0368ad65f9e59ed959754cn/a198.211.121.278080Heodo
2020-01-31 22:49:20d34185df721fe1adf1e8fb943a718d80n/a198.211.121.278080Heodo
2020-01-31 22:39:59237156831bc7de4b27d315446d955460n/a198.211.121.278080Heodo
2020-01-31 22:39:49db65f0a8a94adec8ab86f30677b7fa88Virustotal results 12 / 71 (16.90%) 198.211.121.278080Heodo
2020-01-31 22:39:200c895d90f601ff68300f19ecc234db64n/a198.211.121.278080Heodo
2020-01-31 22:39:017511625f80f488318244b9b225e5342cVirustotal results 11 / 73 (15.07%) 198.211.121.278080Heodo
2020-01-31 22:37:243d4c903fb5c4999b30b46d9b76562c07Virustotal results 10 / 72 (13.89%) 198.211.121.278080Heodo
2020-01-31 22:32:46f5560b772e83ba37d7cfac0dafc1523dn/a198.211.121.278080Heodo
2020-01-31 22:25:36077546e67ba63fb40ed878f279804a6an/a198.211.121.278080Heodo
2020-01-31 22:23:2344ee229f32e742322f8b5fc1a08bfb6an/a198.211.121.278080Heodo
2020-01-31 21:58:307044f0bf16366104c905314a92d40969Virustotal results 10 / 72 (13.89%) 198.211.121.278080Heodo
2020-01-31 21:54:586807811dff36e3e65ddff396f0c5324fn/a198.211.121.278080Heodo
2020-01-31 21:30:241f0e68893a5454e1f0b8e997be39d060n/a198.211.121.278080Heodo
2020-01-31 21:29:5974b12fd12d9ff0b490716807d8e16913n/a198.211.121.278080Heodo
2020-01-31 21:23:43ef20f034c32c520558ff2a754b8d6fe2n/a198.211.121.278080Heodo
2020-01-31 21:09:23668a5b962f90d8e88fb2eeaa49b0830cn/a198.211.121.278080Heodo
2020-01-31 19:48:353ab95820c67346dec8bf88d322977ecbn/a198.211.121.278080Heodo
2020-01-31 19:48:120f4c3221fe70054848ee0a9b6b79c7ddn/a198.211.121.278080Heodo
2020-01-31 19:45:474cefa7e9926a66285ab31babc68c2080n/a198.211.121.278080Heodo
2020-01-31 18:18:05a05675a926a5387343d8c08384bf1f78Virustotal results 19 / 63 (30.16%) 198.211.121.278080Heodo
2020-01-31 17:24:596af57e83627d973bc3370e87af03626en/a198.211.121.278080Heodo

# of malware samples: 178