Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.211.77.71. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.211.77.71
Hostname:201-211-77-71.genericrev.cantv.net
Status:Offline
Spamhaus SBL:SBL427177
Malware:Heodo -
AS number:AS8048
AS name:CANTV Servicios, Venezuela
Country:- VE
First seen:2018-12-17 14:10:49 UTC
Last seen:2019-02-21 00:29:22 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-21 00:40:3120617d660595c004a8bb1dc580927b65Virustotal results 48/67 (71.64%) 201.211.77.7180Heodo
2018-12-18 07:22:3151e3fda9a6d404c936f48573334a982dVirustotal results 50/72 (69.44%) 201.211.77.7180Heodo
2018-12-18 03:40:165be38bad3149a8c1f134e21bea387925Virustotal results 36/61 (59.02%) 201.211.77.7180Heodo
2018-12-18 02:27:31a59b485ccb2743b1ab5d31f2548119cbVirustotal results 16/70 (22.86%) 201.211.77.7180Heodo
2018-12-18 02:17:20baa3e66247639eae9497b4a16bd2938fVirustotal results 25/60 (41.67%) 201.211.77.7180Heodo
2018-12-18 02:04:38bfb10ed1ce363a832921cebbf231e69bVirustotal results 25/59 (42.37%) 201.211.77.7180Heodo
2018-12-17 23:37:1068d75c72cc06a57d4b7d9e3b211d24b8Virustotal results 35/59 (59.32%) 201.211.77.7180Heodo
2018-12-17 23:33:4767d49efc03fbf08b9112e5437c949949Virustotal results 17/69 (24.64%) 201.211.77.7180Heodo
2018-12-17 23:31:061066e01fe949ca7c257e05c02d7d72b5Virustotal results 22/58 (37.93%) 201.211.77.7180Heodo
2018-12-17 23:23:58a2822899189df11a67c84b8d8e821624Virustotal results 16/59 (27.12%) 201.211.77.7180Heodo
2018-12-17 21:38:46551ffab8c82ceeb36bcb39dcfbee3f97Virustotal results 16/57 (28.07%) 201.211.77.7180Heodo
2018-12-17 21:17:4383e2ce47675c00c2521bc264f64af736Virustotal results 18/59 (30.51%) 201.211.77.7180Heodo
2018-12-17 21:17:27568d24acf5336bfca4de7b15f85dde04Virustotal results 18/60 (30.00%) 201.211.77.7180Heodo
2018-12-17 21:16:57ef0fb2fd7be4c8d52002546a7b1a1e8dVirustotal results 17/60 (28.33%) 201.211.77.7180Heodo
2018-12-17 21:11:455fda28a4f04feb49a4375a07d20893d5Virustotal results 18/59 (30.51%) 201.211.77.7180Heodo
2018-12-17 20:57:3143fe20ad08eef9784ce3105463fefac9Virustotal results 19/59 (32.20%) 201.211.77.7180Heodo
2018-12-17 20:48:449c6ce5f23af2f639e79f10d8b46d79dcVirustotal results 16/58 (27.59%) 201.211.77.7180Heodo
2018-12-17 20:38:37451885d5e2e0d1c28b27060ccb28c0b4Virustotal results 17/59 (28.81%) 201.211.77.7180Heodo
2018-12-17 20:27:337fc77f56fc4064704d69b77a927f8f06Virustotal results 20/60 (33.33%) 201.211.77.7180Heodo
2018-12-17 20:26:10b80047f12a5320501608f8c4b2cd370cVirustotal results 17/70 (24.29%) 201.211.77.7180Heodo

# of malware samples: 20