Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 211.229.116.130. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:211.229.116.130
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4766
AS name:KIXS-AS-KR Korea Telecom
Country:- KR
First seen:2019-10-28 12:26:12 UTC
Last seen:2019-11-16 07:26:03 UTC
Last online:2019-11-09

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-11-16 07:37:139de865a479a6e6dcb8ab7523020722e2Virustotal results 39 / 69 (56.52%) 211.229.116.13080Heodo
2019-11-15 23:25:0714aa3134cf884abd5b50664db093f033Virustotal results 37 / 69 (53.62%) 211.229.116.13080Heodo
2019-11-15 22:18:34b1f6514d8f525c1dacb86a89c259625aVirustotal results 38 / 70 (54.29%) 211.229.116.13080Heodo
2019-11-15 15:31:29a74feff7ca13ed18a6ec7d9be0e4a507Virustotal results 6 / 71 (8.45%) 211.229.116.13080Heodo
2019-11-15 15:19:03de4d4dea77b5efb64271c1a97d0f116cn/a211.229.116.13080Heodo
2019-11-15 14:38:42d2a17997edcfbc761a27f63b2db325d9Virustotal results 7 / 72 (9.72%) 211.229.116.13080Heodo
2019-11-15 14:25:2324c7021941ee02fd62530607148cefc1Virustotal results 5 / 67 (7.46%) 211.229.116.13080Heodo
2019-11-15 14:03:559f2ea609e200682ace8791d7309399eeVirustotal results 38 / 70 (54.29%) 211.229.116.13080Heodo
2019-11-15 13:29:47e6ec207047ed48a28dd077b9c25cd43fVirustotal results 37 / 71 (52.11%) 211.229.116.13080Heodo
2019-11-15 11:05:1231917dd0375b9c4b47ec511465490447n/a211.229.116.13080Heodo
2019-11-15 11:03:165c27e7dcb415745ff02825387ad7f16cVirustotal results 9 / 70 (12.86%) 211.229.116.13080Heodo
2019-11-15 10:50:410e4e2a1e99577b0f4c293bad8b0860e7Virustotal results 7 / 70 (10.00%) 211.229.116.13080Heodo
2019-11-14 03:57:03047ffda37dd67be43e9c2d66c6d3b7e4Virustotal results 8 / 70 (11.43%) 211.229.116.13080Heodo
2019-11-14 03:55:216bcaad267f1f5253841d6aa4f270374eVirustotal results 7 / 70 (10.00%) 211.229.116.13080Heodo
2019-11-14 03:32:44af35be92fd3f897a87bbd5d7654bc474Virustotal results 7 / 70 (10.00%) 211.229.116.13080Heodo
2019-11-13 17:51:52400ae6bc55db55bec0d6b1b4cd33a585n/a211.229.116.13080Heodo
2019-11-09 08:11:53026fcdd04c7e28c610079f9222e0f86dVirustotal results 16 / 72 (22.22%) 211.229.116.13080Heodo
2019-11-09 03:18:30fc095b45a99c36fe37116ca26b4b160bVirustotal results 43 / 70 (61.43%) 211.229.116.13080Heodo
2019-11-09 03:07:163c8a7f7d7ebdea9522f9e812d8d3e4b4Virustotal results 42 / 71 (59.15%) 211.229.116.13080Heodo
2019-11-08 20:50:41ac72a0c10831237048d00d145adf84b6Virustotal results 13 / 69 (18.84%) 211.229.116.13080Heodo

# of malware samples: 20