Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 203.130.0.69. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:203.130.0.69
Hostname:glc-host-e.grandleisure.com
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS24435
AS name:SUPERNET-PAKISTAN-AS-AP Supernet Limited Transit Autonomous System Number
Country:- PK
First seen:2019-11-25 12:44:29 UTC
Last seen:2019-12-02 11:07:54 UTC
Last online:2019-12-06

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-02 11:31:5648fcbcb955b0f55e9ef88f51633b460bVirustotal results 49 / 70 (70.00%) 203.130.0.6980Heodo
2019-12-02 10:49:508a22d6dfe1e406a9e73f60d4890eca28Virustotal results 49 / 70 (70.00%) 203.130.0.6980Heodo
2019-11-29 22:03:5354170ed1c4b2c80ac005b9710ad80f07Virustotal results 12 / 71 (16.90%) 203.130.0.6980Heodo
2019-11-29 18:46:24feaec9da1ae22c1e13c3c4ffc58323f0Virustotal results 10 / 70 (14.29%) 203.130.0.6980Heodo
2019-11-26 15:34:59b38130255b87764f28405172e7908c39Virustotal results 11 / 69 (15.94%) 203.130.0.6980Heodo
2019-11-25 21:03:3775470c1d4fd86969ce2f0ef979569918Virustotal results 13 / 70 (18.57%) 203.130.0.6980Heodo
2019-11-25 20:40:117bc94a2d57bce97825db791a664c354eVirustotal results 13 / 70 (18.57%) 203.130.0.6980Heodo
2019-11-25 20:34:08168f1eb18fab9b631b77339cc9028428Virustotal results 11 / 70 (15.71%) 203.130.0.6980Heodo

# of malware samples: 8