Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.212.57.109. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.212.57.109
Hostname:201-212-57-109.cab.prima.net.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10481
AS name:Prima S.A.
Country:- AR
First seen:2019-09-11 09:49:27 UTC
Last seen:2019-11-08 13:55:37 UTC
Last online:2019-09-18

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-08 14:30:06b1e926dc7867dd07ddfd3cf48016c398n/a201.212.57.10980Heodo
2019-09-18 06:48:18ab8d2bf52ca140eaf4154d0e22efe96cVirustotal results 18/69 (26.09%) 201.212.57.10980Heodo
2019-09-18 03:09:43168ff5effc2cdd6bedab4b9419c079a6Virustotal results 51/69 (73.91%) 201.212.57.10980Heodo
2019-09-18 03:01:0845bd7576fe99dd0cad333ef660518c12Virustotal results 17 / 71 (23.94%) 201.212.57.10980Heodo
2019-09-18 02:20:04497a6f4b6e80a71e755282237b37e510Virustotal results 50/69 (72.46%) 201.212.57.10980Heodo
2019-09-17 23:12:05355a526b660cb65772942a07439c764eVirustotal results 17 / 68 (25.00%) 201.212.57.10980Heodo
2019-09-17 22:56:448cab6d02e5a3107579eee69ca01e7ff4Virustotal results 22 / 69 (31.88%) 201.212.57.10980Heodo
2019-09-14 08:15:01c801aee24d96e29a3136ccd4ba9ce509Virustotal results 16 / 69 (23.19%) 201.212.57.10980Heodo
2019-09-14 08:10:27708ab902459854c86fcf0a8f11d6e49bVirustotal results 49 / 67 (73.13%) 201.212.57.10980Heodo
2019-09-13 17:18:21d26c8a648c0baae7260d469d09d3553aVirustotal results 43 / 69 (62.32%) 201.212.57.10980Heodo
2019-09-13 17:17:35e0464c87bfeb6910eaa73eae4dee4f6dVirustotal results 52 / 70 (74.29%) 201.212.57.10980Heodo
2019-09-13 09:10:21558b89a6d9ed93c744242158ad701942Virustotal results 50 / 69 (72.46%) 201.212.57.10980Heodo
2019-09-13 07:28:09cd7371070f1fc73011d069f3c9600297Virustotal results 50 / 68 (73.53%) 201.212.57.10980Heodo
2019-09-11 09:54:36314ef8a595b17dfd037b3a895a0d9543Virustotal results 55/69 (79.71%) 201.212.57.10980Heodo

# of malware samples: 14