Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 2.42.173.240. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:2.42.173.240
Hostname:net-2-42-173-240.cust.vodafonedsl.it
Status:- Online
Spamhaus SBL:SBL471131
Malware:Heodo -
AS number:AS30722
AS name:VODAFONE-IT-ASN
Country:- IT
First seen:2019-12-10 12:13:36 UTC
Last seen:2019-12-12 13:33:20 UTC
Last online:2020-01-18

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-13 03:03:14a323f45462b65970bbb2b377f5cf6888Virustotal results 22 / 72 (30.56%) 2.42.173.24080Heodo
2019-12-11 18:28:106051c389090f1ca5f667e2daa87c3af6Virustotal results 21 / 65 (32.31%) 2.42.173.24080Heodo
2019-12-11 18:11:44ea8ffaa1d0870fc6c9a572c716920a74Virustotal results 12 / 71 (16.90%) 2.42.173.24080Heodo
2019-12-11 18:03:13a54e1062beaec284c9186baed325def2n/a2.42.173.24080Heodo
2019-12-11 13:16:4191bc166387f2384b4a951f6ef5d540ecVirustotal results 13 / 71 (18.31%) 2.42.173.24080Heodo
2019-12-11 02:08:25531e539de5e4e5f93febaf930a8f9344Virustotal results 18 / 60 (30.00%) 2.42.173.24080Heodo
2019-12-10 22:46:246273afe1b53680962766bbacf5181348n/a2.42.173.24080Heodo
2019-12-10 22:45:283c0de48e4b0eebcc50f9417b7a46d0dan/a2.42.173.24080Heodo
2019-12-10 16:42:398d0a097ca3f1a67709361795ace3293bVirustotal results 17 / 58 (29.31%) 2.42.173.24080Heodo
2019-12-10 16:42:398d0a097ca3f1a67709361795ace3293bVirustotal results 17 / 58 (29.31%) 2.42.173.24080Heodo
2019-12-10 15:11:141a438ac2549d4f8c2f2646d0a2062179n/a2.42.173.24080TrickBot
2019-12-10 12:21:21b35ca9f19751091281e60bd623d5775eVirustotal results 14 / 59 (23.73%) 2.42.173.24080Heodo

# of malware samples: 12