Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 204.63.252.182. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:204.63.252.182
Hostname:NTL204H63-252-182.nt.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS35911
AS name:BNQ-1
Country:- CA
First seen:2019-12-04 06:09:30 UTC
Last seen:2020-06-21 15:49:26 UTC
Last online:2019-12-11

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-06-22 16:50:20bb072a1016033f2e109e8135a13f036eVirustotal results 55 / 71 (77.46%) 204.63.252.182443Heodo
2020-02-03 13:28:20c2f29cc2d97f0e7d9620e5bd9cbca47dVirustotal results 48 / 72 (66.67%) 204.63.252.182443Heodo
2019-12-17 18:09:1770c5bbe55ee38dd3eda014c7b28fc440Virustotal results 11 / 71 (15.49%) 204.63.252.182443Heodo
2019-12-13 19:57:492b4d04bf514411407a2eefe4c1631035Virustotal results 10 / 72 (13.89%) 204.63.252.182443Heodo
2019-12-13 18:39:28d5e3dea19305cc654463a36fea81bbf0Virustotal results 8 / 69 (11.59%) 204.63.252.182443Heodo
2019-12-13 11:57:15c1adfcc38051d2223e34787ee9f68d8dVirustotal results 45 / 71 (63.38%) 204.63.252.182443Heodo
2019-12-13 11:49:25db5a75f630ef08f3cab2f3553301d2a7Virustotal results 9 / 71 (12.68%) 204.63.252.182443Heodo
2019-12-13 08:20:1477ec148d4314a773890692fb19277434n/a204.63.252.182443Heodo
2019-12-11 19:41:38f300506dd52902c6890308cffe68b12an/a204.63.252.182443Heodo
2019-12-10 08:15:497be8bdad1f7587768afcbd0312f939e8Virustotal results 9 / 72 (12.50%) 204.63.252.182443Heodo
2019-12-09 13:28:230c674ee991b5625af669e37e77e3321eVirustotal results 12 / 70 (17.14%) 204.63.252.182443Heodo
2019-12-04 06:31:40c12f7acc06e3ba90e5663cbe6be2216cn/a204.63.252.182443Heodo

# of malware samples: 12