Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.171.3.20. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.171.3.20
Hostname:201.171.3.20.dsl.dyn.telnor.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8151
AS name:Uninet S.A. de C.V.
Country:- MX
First seen:2018-12-11 13:46:31 UTC
Last seen:2018-12-12 14:14:44 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-12 17:19:2234b8e96388f0c38d6350b9e5b36868e4Virustotal results 10/70 (14.29%) 201.171.3.2080Heodo
2018-12-12 16:10:37c4251366e1661eeee0ee494494bd4e53Virustotal results 14/60 (23.33%) 201.171.3.2080Heodo
2018-12-12 16:00:451029334168f9f1a049ac1682c1a60643Virustotal results 12/69 (17.39%) 201.171.3.2080Heodo
2018-12-12 13:20:01d9fe17478aad27ade8f0acdcd4a25f8bVirustotal results 28/59 (47.46%) 201.171.3.2080Heodo
2018-12-12 10:23:371f88db266ab9d54fba291a80924ca5c7Virustotal results 14/59 (23.73%) 201.171.3.2080Heodo
2018-12-12 09:55:211028c17d7bd00f70002c63473789baecVirustotal results 9/70 (12.86%) 201.171.3.2080Heodo
2018-12-12 09:44:13e76ecde0e283957b97fb3871244a2ce1Virustotal results 20/59 (33.90%) 201.171.3.2080Heodo
2018-12-12 09:44:056b38cd50c8b3aa86df745ce36e4582a6Virustotal results 36/60 (60.00%) 201.171.3.2080Heodo
2018-12-12 06:48:02e07d54d1b084b31da2f629a44b71d754Virustotal results 12/69 (17.39%) 201.171.3.2080Heodo
2018-12-12 05:36:21d0b7da581672e9c8190074f0b621ae45Virustotal results 16/58 (27.59%) 201.171.3.2080Heodo
2018-12-12 03:21:55e4621a477cb759d2e820a7db3e3524b3Virustotal results 12/69 (17.39%) 201.171.3.2080Heodo
2018-12-12 00:44:080becbf753b1d0c2eed1b75dbec46140aVirustotal results 17/61 (27.87%) 201.171.3.2080Heodo
2018-12-12 00:33:5345f72e16fda6225f36ee0a8416dc19e1Virustotal results 15/60 (25.00%) 201.171.3.2080Heodo
2018-12-12 00:29:58a3f9632fc0f3e08bf1425219a2f652f8Virustotal results 17/60 (28.33%) 201.171.3.2080Heodo
2018-12-12 00:05:091145bec6a270f543c0d10696d2850fb9Virustotal results 15/60 (25.00%) 201.171.3.2080Heodo
2018-12-11 23:41:398739194aa92a11de5abc3d176e01f52cVirustotal results 15/59 (25.42%) 201.171.3.2080Heodo
2018-12-11 23:22:29b07e3e8fe30601865342ed603fb1c4e8Virustotal results 16/58 (27.59%) 201.171.3.2080Heodo
2018-12-11 22:21:32214107400cde607a5c976df2c277dd96Virustotal results 37/59 (62.71%) 201.171.3.2080Heodo
2018-12-11 21:42:4275d814067da968ec3637605faeec8addVirustotal results 15/59 (25.42%) 201.171.3.2080Heodo
2018-12-11 21:33:30e8a4999ef42935e3f1ec0530b062fef7Virustotal results 15/60 (25.00%) 201.171.3.2080Heodo
2018-12-11 20:30:5357932e53e1e82d9f31e7aa244f51cf7dVirustotal results 15/60 (25.00%) 201.171.3.2080Heodo
2018-12-11 19:41:188b952a413a4614404bc67b38270621dfVirustotal results 14/59 (23.73%) 201.171.3.2080Heodo
2018-12-11 18:13:3030a6333a00ca591231ec9fdbc81cd3d8Virustotal results 17/58 (29.31%) 201.171.3.2080Heodo
2018-12-11 15:30:4104653066f7f0f64ef061358a8692f0c3Virustotal results 17/58 (29.31%) 201.171.3.2080Heodo
2018-12-11 15:23:01b4b36d3813fa6b967a583efc806f8d3fVirustotal results 36/59 (61.02%) 201.171.3.2080Heodo
2018-12-11 15:14:54ebce165fbc8325e322c10d1ea8f99a65Virustotal results 17/58 (29.31%) 201.171.3.2080Heodo
2018-12-11 14:50:27466b1300a268bf2061bad44dc8445531Virustotal results 21/60 (35.00%) 201.171.3.2080Heodo
2018-12-11 14:23:37ae3e06235b189c911735d6b0fb7b7903Virustotal results 21/60 (35.00%) 201.171.3.2080Heodo
2018-12-11 14:08:479d1db3e83d21c7b2ca74c95d29018090Virustotal results 23/60 (38.33%) 201.171.3.2080Heodo

# of malware samples: 29