Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 24.249.73.48. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:24.249.73.48
Hostname:wsip-24-249-73-48.tu.ok.cox.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS22773
AS name:ASN-CXA-ALL-CCI-22773-RDC
Country:- US
First seen:2020-02-20 02:28:10 UTC
Last seen:2020-03-21 16:29:14 UTC
Last online:2020-03-19

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-22 00:44:40a4708e15384ef20b7f3ba8a3c892df1cVirustotal results 26 / 73 (35.62%) 24.249.73.4880Heodo
2020-03-18 22:49:07ce576b1a87f3eb8f63a15b2445e696d4Virustotal results 20 / 72 (27.78%) 24.249.73.4880Heodo
2020-03-17 03:11:53fa33b498cd5c883112103e5fd23527cbn/a24.249.73.4880Heodo
2020-03-14 08:14:30b7265dd28f4e2662aadba7b270f36591Virustotal results 4 / 72 (5.56%) 24.249.73.4880Heodo
2020-03-13 06:56:26b9ddfcd2f13ab633288ee8fcfc6da689Virustotal results 2 / 71 (2.82%) 24.249.73.4880Heodo
2020-02-27 20:29:181473c2bccfafd315ae9565c3b0137296Virustotal results 41 / 73 (56.16%) 24.249.73.4880Heodo
2020-02-27 19:10:215d226b7a6caa9278de5ff827f59ab3d2Virustotal results 45 / 72 (62.50%) 24.249.73.4880Heodo

# of malware samples: 7