Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 2.139.158.136. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:2.139.158.136
Hostname:136.red-2-139-158.staticip.rima-tde.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS3352
AS name:TELEFONICA_DE_ESPANA
Country:- ES
First seen:2019-12-17 07:52:29 UTC
Last seen:2020-01-09 15:10:12 UTC
Last online:2019-12-20

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-16 04:07:0024d0acae02d75cbb6b099dc4c1c6c41aVirustotal results 17 / 59 (28.81%) 2.139.158.136443Heodo
2020-01-16 04:05:014fcf81eae016ab9647bf0ada6e6213efn/a2.139.158.136443Heodo
2020-01-16 04:00:216653b9cee6cb1aeadc5359a65d888e64n/a2.139.158.136443Heodo
2020-01-16 03:51:365c2891c143820b4db9ee880b5e33ac37Virustotal results 18 / 62 (29.03%) 2.139.158.136443Heodo
2020-01-16 03:48:028b5d44735c16081008885f8eac206c80Virustotal results 17 / 58 (29.31%) 2.139.158.136443Heodo
2020-01-16 03:42:49c1a3e3f876ffc2eb98bf8ab8ef61b8a1Virustotal results 18 / 62 (29.03%) 2.139.158.136443Heodo
2020-01-16 03:42:088ba2c19ccd06e684d51c78f346188aaaVirustotal results 18 / 60 (30.00%) 2.139.158.136443Heodo
2020-01-16 03:40:247bb896a4e7b80c099b2081948a4c0849Virustotal results 18 / 61 (29.51%) 2.139.158.136443Heodo
2020-01-16 03:39:1938ab5fb5948f9199f2d8277a9be31954Virustotal results 18 / 60 (30.00%) 2.139.158.136443Heodo
2020-01-16 03:38:37d9989d285cf1aeef3bda237bd23f4ca7Virustotal results 18 / 60 (30.00%) 2.139.158.136443Heodo
2020-01-16 03:32:59526247c86a4d7ffc811474e532775b71Virustotal results 19 / 61 (31.15%) 2.139.158.136443Heodo
2020-01-16 03:18:543764d39e921960b084c47ddcb3062ad1n/a2.139.158.136443Heodo
2020-01-16 02:47:49d40a1d9fd826066421bee5207a707c60Virustotal results 20 / 56 (35.71%) 2.139.158.136443Heodo
2020-01-09 17:27:25473610786664adeac7e94dc87faca550Virustotal results 60 / 72 (83.33%) 2.139.158.136443Heodo
2019-12-23 04:21:28a984ea0edfba593387494370bfadda2aVirustotal results 21 / 71 (29.58%) 2.139.158.136443Heodo
2019-12-22 10:45:529ac3761575b6f6dca1ade6c45566bfcfVirustotal results 19 / 72 (26.39%) 2.139.158.136443Heodo
2019-12-21 14:46:33ef2aec8c5743cad79fb97aa05b653f65Virustotal results 12 / 72 (16.67%) 2.139.158.136443Heodo
2019-12-21 06:21:393b609e75cf34d9b864987e7a9bc9f8c7Virustotal results 11 / 72 (15.28%) 2.139.158.136443Heodo
2019-12-18 14:34:36c4648210965cc500e5682504fadb8b8fVirustotal results 17 / 72 (23.61%) 2.139.158.136443Heodo
2019-12-18 10:54:34bdfbb1bd7a8c5fba5ffdd4d724f9a4c1Virustotal results 14 / 70 (20.00%) 2.139.158.136443Heodo
2019-12-18 10:52:47a68c44a3fcb80117923d478ebac50eacVirustotal results 13 / 72 (18.06%) 2.139.158.136443Heodo
2019-12-18 08:49:15c53bc4c1a4e813613dc05294b0cc0918n/a2.139.158.136443Heodo
2019-12-18 06:28:00b7bb2572c1c30722efb2eb456af80c08Virustotal results 7 / 72 (9.72%) 2.139.158.136443Heodo
2019-12-17 22:44:28bf1f51af60ee2672b930c4b60843b381n/a2.139.158.136443Heodo
2019-12-17 18:56:5431ab292cc3cf1271ce058e50de15fdecVirustotal results 13 / 72 (18.06%) 2.139.158.136443Heodo

# of malware samples: 25