Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 206.212.248.178. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:206.212.248.178
Hostname:batman.elwebstudio.com.ar
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS12260
AS name:CUSTOMDOTNET - Colostore.com
Country:- US
First seen:2019-05-08 18:29:18 UTC
Last seen:2019-05-12 04:29:13 UTC
Last online:2019-05-13

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-05-14 00:43:212014187d7e64e1eeaa57d00428f8582aVirustotal results 29/71 (40.85%) 206.212.248.1788080Heodo
2019-05-12 15:53:10a161588521a56113520f83777397db15Virustotal results 43/73 (58.90%) 206.212.248.1788080Heodo
2019-05-10 11:13:12a38c69582bb7acb818a8a5f83eb92731Virustotal results 20/71 (28.17%) 206.212.248.1788080Heodo
2019-05-10 10:21:144018aba2a711ba2f9b6cdc79ad765ffdVirustotal results 19/68 (27.94%) 206.212.248.1788080Heodo
2019-05-10 10:21:135155233d8145974020fa1b326e271b9eVirustotal results 20/70 (28.57%) 206.212.248.1788080Heodo
2019-05-10 07:36:168b7f64bbd2a271ff6d80c76adffce9a8Virustotal results 19/69 (27.54%) 206.212.248.1788080Heodo
2019-05-10 05:47:33bc48a5081ccadbadd0bac348373c89d8Virustotal results 18/70 (25.71%) 206.212.248.1788080Heodo
2019-05-10 05:27:5530705a0a2a7db0d247209df86385eb9bVirustotal results 46/71 (64.79%) 206.212.248.1788080Heodo
2019-05-10 05:21:4955030747a97cad66aff2d3334cdd3c8cVirustotal results 16/73 (21.92%) 206.212.248.1788080Heodo
2019-05-10 03:43:256dcf64a0d4c9661335160c9b18c4974fVirustotal results 18/73 (24.66%) 206.212.248.1788080Heodo
2019-05-10 02:34:125aaf0cfcdfc85664b82a79e7cbe27a73Virustotal results 18/70 (25.71%) 206.212.248.1788080Heodo
2019-05-10 00:15:02e5486d338b403a182869dc43c5a3cbf0Virustotal results 14/69 (20.29%) 206.212.248.1788080Heodo
2019-05-09 23:34:081365d9efc66a8c0c072175a8301e5aa0Virustotal results 15/71 (21.13%) 206.212.248.1788080Heodo
2019-05-09 23:06:203e0f4a0847c73712db37601bb65c5062Virustotal results 15/71 (21.13%) 206.212.248.1788080Heodo
2019-05-09 22:12:50e29cfc74dd055c8ae189554d1ad888bcVirustotal results 13/69 (18.84%) 206.212.248.1788080Heodo
2019-05-09 09:42:31d48fa8a3fc05fc9315a954eb06c8821eVirustotal results 17/71 (23.94%) 206.212.248.1788080Gozi
2019-05-09 09:42:31d48fa8a3fc05fc9315a954eb06c8821eVirustotal results 17/71 (23.94%) 206.212.248.1788080Gozi
2019-05-09 09:38:54eaccefb0fff9dd0dd3a44683d8614d4en/a206.212.248.1788080Heodo
2019-05-09 06:43:33ef194313e47600945fb091c7c8771efcVirustotal results 25/73 (34.25%) 206.212.248.1788080Heodo
2019-05-09 06:41:0035a0dfa8612475e7590428075ecad003Virustotal results 15/73 (20.55%) 206.212.248.1788080Heodo
2019-05-09 06:41:0035a0dfa8612475e7590428075ecad003Virustotal results 15/73 (20.55%) 206.212.248.1788080Heodo
2019-05-08 20:57:15ce516b61c5709134075e7dc12e124259Virustotal results 15/72 (20.83%) 206.212.248.1788080Heodo
2019-05-08 20:57:15ce516b61c5709134075e7dc12e124259Virustotal results 15/72 (20.83%) 206.212.248.1788080Heodo
2019-05-08 20:23:017480ba77c907c7468e19019cc21d9dbdVirustotal results 14/71 (19.72%) 206.212.248.1788080Heodo
2019-05-08 20:23:017480ba77c907c7468e19019cc21d9dbdVirustotal results 14/71 (19.72%) 206.212.248.1788080Heodo
2019-05-08 20:21:466717fd1656cea5fc984abc3053429d56Virustotal results 15/70 (21.43%) 206.212.248.1788080Heodo
2019-05-08 19:47:09583565b485131e7cb02a642943ae7833Virustotal results 14/63 (22.22%) 206.212.248.1788080Heodo
2019-05-08 19:44:504153ccc49252f10efa3b91032ce8e8c5Virustotal results 42/72 (58.33%) 206.212.248.1788080Heodo
2019-05-08 18:45:462498e5336a11184fd720f778b5d2f880Virustotal results 20/62 (32.26%) 206.212.248.1788080Heodo

# of malware samples: 29