Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 201.91.28.210. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:201.91.28.210
Hostname:correio.gmdlogistica.com.br
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10429
AS name:TELEFONICA BRASIL S.A
Country:- BR
First seen:2020-04-03 09:24:26 UTC
Last seen:2020-05-10 21:37:43 UTC
Last online:2020-05-22

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-05-10 21:51:30092113548bbdbc45f57e0893a56c0ffbVirustotal results 50 / 73 (68.49%) 201.91.28.21080Heodo
2020-05-09 10:57:44fb96691b020d13f8400b00f7f3b02b1dVirustotal results 10 / 71 (14.08%) 201.91.28.21080Heodo
2020-05-08 17:26:444e81e992f93f3bb3532293699b34ebe6Virustotal results 46 / 72 (63.89%) 201.91.28.21080Heodo
2020-04-21 19:21:33c463f3d297d3e9977e05edc08dc83befVirustotal results 9 / 72 (12.50%) 201.91.28.21080Heodo
2020-04-20 05:12:01154b9b79f26378ee7d240e5b18c1afc6Virustotal results 7 / 72 (9.72%) 201.91.28.21080Heodo
2020-04-20 03:52:51a5472eb9a7d9c6f3a766c16c8943c39eVirustotal results 38 / 71 (53.52%) 201.91.28.21080Heodo
2020-04-19 21:05:433cea62260ea526994d51333c4d7492a0Virustotal results 14 / 71 (19.72%) 201.91.28.21080Heodo
2020-04-19 07:27:29e7dd8062b2e8d8f3c6b3edbfea51a577Virustotal results 11 / 70 (15.71%) 201.91.28.21080Heodo
2020-04-18 00:37:48c2b8716dc155c3ae77647d5fc995d06eVirustotal results 8 / 72 (11.11%) 201.91.28.21080Heodo
2020-04-15 23:13:40bb2a91f3f05d34eaf664cd529b4f1660Virustotal results 42 / 72 (58.33%) 201.91.28.21080Heodo

# of malware samples: 10