Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 203.124.57.50. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:203.124.57.50
Hostname:203-124-57-50.adsl.fsd.comsats.net.pk
Status:Offline
Spamhaus SBL:SBL472376
Malware:Heodo -
AS number:AS7590
AS name:COMSATS Commission on Science and Technology for
Country:- PK
First seen:2019-12-27 19:42:17 UTC
Last seen:2020-01-17 15:08:24 UTC
Last online:2020-01-20

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-18 03:02:4960ce539c38953448b0fd695398dc3baeVirustotal results 30 / 73 (41.10%) 203.124.57.5080Heodo
2020-01-17 15:54:36e129f0c1944c34a423334aaf0aed1bb2Virustotal results 13 / 72 (18.06%) 203.124.57.5080Heodo
2020-01-17 12:03:50a8b4a4ab19cc9aaa1e388e27239dbfeeVirustotal results 18 / 73 (24.66%) 203.124.57.5080Heodo
2020-01-17 11:32:51653c3d61588663b4ede94fc3a61ef207Virustotal results 18 / 72 (25.00%) 203.124.57.5080Heodo
2020-01-17 07:37:57f77ec23530d31306eb3b3c7155f635dfVirustotal results 15 / 72 (20.83%) 203.124.57.5080Heodo
2020-01-17 07:37:1297e44d5dff7ec47a54c95a884e6a44a8Virustotal results 14 / 72 (19.44%) 203.124.57.5080Heodo
2020-01-17 06:05:2643d6c526549d9ae7457ac76c1e1ef55cVirustotal results 12 / 71 (16.90%) 203.124.57.5080Heodo
2020-01-16 22:49:11349095756fa3caac41a8d65cbabe37d6n/a203.124.57.5080Heodo
2019-12-27 21:54:15ab78de06db000c939569c24d21ad8955Virustotal results 15 / 72 (20.83%) 203.124.57.5080Heodo

# of malware samples: 9