Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 2.90.246.63. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:2.90.246.63
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS25019
AS name:SAUDINETSTC-AS, SA
Country:- SA
First seen:2018-08-13 15:32:35 UTC
Last seen:2018-08-14 09:43:43 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-08-18 12:20:15a46b1968e3a3818ea3ba81859b1c46e1Virustotal results 22/68 (32.35%) 2.90.246.63443Heodo
2018-08-16 20:58:008ae9c9c0f516567763c59b27dc4e162aVirustotal results 29/68 (42.65%) 2.90.246.63443Heodo
2018-08-14 10:08:334ae19efc529900d0f4b3314d8a2e4ef0Virustotal results 21/66 (31.82%) 2.90.246.63443Heodo
2018-08-14 07:51:389bc8f69d12798f75be37a265f09fd95bVirustotal results 25/68 (36.76%) 2.90.246.63443Heodo
2018-08-14 07:06:21951977b567497102900eebb5adb0967cVirustotal results 28/68 (41.18%) 2.90.246.63443Heodo
2018-08-14 07:00:22acd7ef4b1a0da5aaa436c206f0a9a7b7Virustotal results 35/68 (51.47%) 2.90.246.63443Heodo
2018-08-14 06:43:59ee7d03ed2dc65f37d6bcaecb5ea4f1bdVirustotal results 20/68 (29.41%) 2.90.246.63443Heodo
2018-08-14 06:35:07f2d2b0f9729382b24b19b5b24de8674eVirustotal results 36/68 (52.94%) 2.90.246.63443Heodo
2018-08-13 15:50:373e4267c0e14874857d5d2018340268b3Virustotal results 18/65 (27.69%) 2.90.246.63443Heodo

# of malware samples: 9