Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 211.192.153.224. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:211.192.153.224
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4766
AS name:KIXS-AS-KR Korea Telecom
Country:- KR
First seen:2020-01-24 22:32:17 UTC
Last seen:2020-02-21 02:42:38 UTC
Last online:2020-02-15

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-02-21 05:53:59a8e70acb74b8ee44f027e79ecd284cedVirustotal results 15 / 73 (20.55%) 211.192.153.22480Heodo
2020-02-05 15:14:4619357c4d730b483bc390d7ada598e262Virustotal results 45 / 73 (61.64%) 211.192.153.22480Heodo
2020-02-04 14:56:30772dbd5093bb9ba17cb3ec56006f3adeVirustotal results 6 / 71 (8.45%) 211.192.153.22480Heodo
2020-02-04 13:37:213943ff32a0efd8ac29e014dd136e57f9Virustotal results 20 / 71 (28.17%) 211.192.153.22480Heodo
2020-02-04 05:47:14fa9071f1ee11a6c29fa2b932b2423a47Virustotal results 22 / 62 (35.48%) 211.192.153.22480Heodo
2020-02-03 20:40:4593d2e9a555cd9292a0a49f2ff580aadan/a211.192.153.22480Heodo
2020-02-03 18:21:22e50cb556768085391392a0ff825b5541n/a211.192.153.22480Heodo
2020-02-03 17:57:33d440f358302ba0bfbbb9eb62b94c19bdVirustotal results 20 / 63 (31.75%) 211.192.153.22480Heodo
2020-02-03 17:19:172d9e36583a625cf178b0073d0a2e02e7n/a211.192.153.22480Heodo
2020-01-25 10:38:57fdf52c3f70ae23dff90efd353de67d25Virustotal results 25 / 62 (40.32%) 211.192.153.22480Heodo

# of malware samples: 10