Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.171.244.130. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.171.244.130
Hostname:201.171.244.130.ded.telnor.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS6332
AS name:Telefonos del Noroeste, S.A. de C.V.
Country:- MX
First seen:2020-10-29 19:14:24 UTC
Last seen:2020-11-13 15:16:33 UTC
Last online:2020-11-04

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-11-13 17:42:3868faaf581e68fab4d6dd42ba3f0d18b2n/a201.171.244.13080Heodo
2020-11-04 06:30:29a3464f564989c6d418ed26c0e9fc6d0dVirustotal results 31 / 70 (44.29%) 201.171.244.13080Heodo
2020-10-31 21:46:5236abd14e7d7215e8cbfbca2e1dcb9bd1n/a201.171.244.13080Heodo
2020-10-31 19:24:398d42279129faed0fd0d1a3814aba1c92n/a201.171.244.13080Heodo
2020-10-31 16:30:10d3b510a485cad87ba52244a37d347eb4n/a201.171.244.13080Heodo
2020-10-31 13:09:49d4da286847fc487b5a0b3e55594d27a0n/a201.171.244.13080Heodo
2020-10-31 08:05:01712796acb2f2cc237cf1e1862a878e42Virustotal results 31 / 72 (43.06%) 201.171.244.13080Heodo
2020-10-31 03:01:565d0ea96850bc83a02ff71243164b536dn/a201.171.244.13080Heodo
2020-10-31 02:15:33163ea67ca4800f8d437f21d300da60d7Virustotal results 30 / 72 (41.67%) 201.171.244.13080Heodo
2020-10-30 17:00:0579e36072dacc1b50d742f5ef2000650fVirustotal results 28 / 67 (41.79%) 201.171.244.13080Heodo
2020-10-30 16:32:5541240f62f1a356937b93a5b42e4f7fd6Virustotal results 17 / 72 (23.61%) 201.171.244.13080Heodo
2020-10-30 16:30:057430ca7eb80f8164559d7cfc4e0b904bn/a201.171.244.13080Heodo
2020-10-30 14:24:476e96c32a5c2eb339b632137d3212a9d3Virustotal results 18 / 71 (25.35%) 201.171.244.13080Heodo
2020-10-30 12:06:30585afdf11a557f60cecba341ede87cc7Virustotal results 28 / 70 (40.00%) 201.171.244.13080Heodo
2020-10-30 11:07:504e937fe5d782511a7e77d2aa496f2e16n/a201.171.244.13080Heodo
2020-10-30 10:03:45417a037248752bec6609c2f3d57276a3n/a201.171.244.13080Heodo
2020-10-30 09:18:193942b01979dcd8ba07a1111451f633fen/a201.171.244.13080Heodo
2020-10-30 08:44:3832d09d6afebd2b803ffcf6042d7abb46n/a201.171.244.13080Heodo
2020-10-30 08:25:532fb0c06e46afbf263fc0bc5c6b018ef0n/a201.171.244.13080Heodo
2020-10-30 07:57:032a521e47a016df5c518fd022a67e2c9cVirustotal results 15 / 71 (21.13%) 201.171.244.13080Heodo
2020-10-30 07:47:01281cdfbe172f92d59f555f028617690eVirustotal results 36 / 71 (50.70%) 201.171.244.13080Heodo
2020-10-30 07:20:01230e9428c11d1f219e685baedd385982n/a201.171.244.13080Heodo
2020-10-30 07:06:39155e2c0e274b02d367d118e56bab8adcn/a201.171.244.13080Heodo
2020-10-30 07:02:450bf98bf2ce3f9ab90a8e6bc7a251ccc6Virustotal results 30 / 72 (41.67%) 201.171.244.13080Heodo
2020-10-30 05:08:580ad3942df3aa47f30644ee9886ac2263n/a201.171.244.13080Heodo

# of malware samples: 25