Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.231.209.16. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.231.209.16
Hostname:16-209-231-201.fibertel.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10318
AS name:CABLEVISION S.A.
Country:- AR
First seen:2019-03-04 20:13:25 UTC
Last seen:2019-03-06 18:26:43 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-03-06 18:36:458cf8aef87f6b7d6b742b38328d2e48ddVirustotal results 11/66 (16.67%) 201.231.209.16443Heodo
2019-03-05 12:56:2569f08f84b88bffa7da87d47178b5546eVirustotal results 17/55 (30.91%) 201.231.209.16443Heodo
2019-03-05 09:34:155853928980ee45070b8e8b165ad36920Virustotal results 40/65 (61.54%) 201.231.209.16443Heodo
2019-03-05 02:54:35d14d27175f173fefd1406dabc2918ae2Virustotal results 39/67 (58.21%) 201.231.209.16443Heodo
2019-03-04 20:54:298fbd993c5b326f250a8cdfbbb7d5372fVirustotal results 14/65 (21.54%) 201.231.209.16443Heodo
2019-03-04 20:22:1480fd8304c1ec7eb53973d541c2655279Virustotal results 14/63 (22.22%) 201.231.209.16443Heodo

# of malware samples: 6