Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 200.126.237.113. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:200.126.237.113
Hostname:113-237-126-200.fibertel.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10318
AS name:Telecom Argentina S.A.
Country:- AR
First seen:2020-03-17 03:42:20 UTC
Last seen:2020-07-06 07:29:20 UTC
Last online:2020-06-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-07-10 05:39:45e513bb1c4a0d464e95976b3f1d836a3dVirustotal results 45 / 72 (62.50%) 200.126.237.11380Heodo
2020-07-06 07:40:532360160d6c4177da5807842543091fbdVirustotal results 47 / 71 (66.20%) 200.126.237.11380Heodo
2020-06-27 20:51:41a4ab8f1cb18ce4f5d54d18e10c2472a8Virustotal results 38 / 74 (51.35%) 200.126.237.11380Heodo
2020-06-18 05:29:132ce9ddafbdbed3c6cdb24f807d6084ddVirustotal results 13 / 71 (18.31%) 200.126.237.11380Heodo
2020-06-17 14:33:244092735b3e19028475fd918f1f5c03abVirustotal results 32 / 73 (43.84%) 200.126.237.11380Heodo
2020-06-16 17:42:51439741bfd26d0ee691fdcadee567b77fVirustotal results 12 / 72 (16.67%) 200.126.237.11380Heodo
2020-06-16 10:07:13f6ce395729f3e46a28c420c0c189de58Virustotal results 12 / 73 (16.44%) 200.126.237.11380Heodo
2020-06-15 15:12:33df45b3880671ee0db050858031a501d6Virustotal results 16 / 74 (21.62%) 200.126.237.11380Heodo
2020-06-12 00:13:5717c2dbf8767672ba705fbd6a88bbb634Virustotal results 40 / 72 (55.56%) 200.126.237.11380Heodo
2020-04-03 09:00:34b75879aa4d2e102a0d3c1af21b847d47n/a200.126.237.11380Heodo

# of malware samples: 10