Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 213.60.96.117. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:213.60.96.117
Hostname:117.96.60.213.dynamic.reverse-mundo-r.com
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS12334
AS name:Galicia - Spain
Country:- ES
First seen:2020-05-21 21:10:26 UTC
Last seen:2020-05-24 23:10:24 UTC
Last online:2020-05-25

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-05-24 23:03:34c999ebdcd327cd1352366228db69b7c3Virustotal results 5 / 73 (6.85%) 213.60.96.11780Heodo
2020-05-24 22:54:37bb63c346835903adfdbe45d29d403a98Virustotal results 12 / 72 (16.67%) 213.60.96.11780Heodo
2020-05-24 18:06:0302f68955b72a20ea60ebf7d997b912e8Virustotal results 4 / 72 (5.56%) 213.60.96.11780Heodo
2020-05-24 09:53:1096593269fe2349211dc55707f4ec327eVirustotal results 17 / 71 (23.94%) 213.60.96.11780Heodo
2020-05-23 23:23:3363a901592368ecb79af7c217809af4d0Virustotal results 11 / 70 (15.71%) 213.60.96.11780Heodo
2020-05-23 18:56:165a60f07bc74d131a1f8d8403db47df86Virustotal results 8 / 71 (11.27%) 213.60.96.11780Heodo
2020-05-23 05:49:5532ea5413c8c1b5c19d03b6893376d887Virustotal results 8 / 73 (10.96%) 213.60.96.11780Heodo
2020-05-22 11:18:23398cea2c699fe9a6991ad78b9be99b57Virustotal results 37 / 71 (52.11%) 213.60.96.11780Heodo
2020-05-21 21:26:1670ed5ffa2d9a03352c9b5d90ed0515e1Virustotal results 22 / 71 (30.99%) 213.60.96.11780Heodo
2020-05-21 21:03:0452c0fcfa7cbb6f664c0b63cb190cd04cVirustotal results 22 / 72 (30.56%) 213.60.96.11780Heodo

# of malware samples: 10