Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 24.85.236.47. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:24.85.236.47
Hostname:S0106b4fbe428477a.vc.shawcable.net
Status:Offline
Spamhaus SBL:SBL426628
Malware:Heodo -
AS number:AS6327
AS name:SHAW - Shaw Communications Inc.
Country:- CA
First seen:2018-12-03 12:16:16 UTC
Last seen:2018-12-04 18:59:21 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-04 19:38:248ceb9c372a42aa1ae1e6f72ef0061134Virustotal results 15/58 (25.86%) 24.85.236.4780Heodo
2018-12-04 19:28:57e744d6b711b673ff5042d5d07d455036Virustotal results 39/58 (67.24%) 24.85.236.4780Heodo
2018-12-04 17:50:58db71955ffe6a87d71669a4a7caa92670Virustotal results 17/69 (24.64%) 24.85.236.4780Heodo
2018-12-04 17:49:28e8fe9fd9b148400c5ce58e7a6dddb192Virustotal results 43/70 (61.43%) 24.85.236.4780Heodo
2018-12-04 17:49:28e8fe9fd9b148400c5ce58e7a6dddb192Virustotal results 43/70 (61.43%) 24.85.236.4780Heodo
2018-12-04 17:08:534f655bda03f05629485524ed031e7533Virustotal results 31/58 (53.45%) 24.85.236.4780Heodo
2018-12-04 17:08:3479a218304abb0673c7ea3a1f62165d35Virustotal results 15/60 (25.00%) 24.85.236.4780Heodo
2018-12-04 15:22:436a14d9436926dd391339b2d2e71a1f4aVirustotal results 40/61 (65.57%) 24.85.236.4780Heodo
2018-12-04 15:12:57932ecbed801ffca6c95bf62a20de80e9Virustotal results 14/59 (23.73%) 24.85.236.4780Heodo
2018-12-04 15:09:3165002aa48fce1053fbd0cfac7918d96aVirustotal results 14/59 (23.73%) 24.85.236.4780Heodo
2018-12-04 14:04:04d61dac74cfe2ceaf10bdf7c0b4bfc8ebVirustotal results 14/60 (23.33%) 24.85.236.4780Heodo
2018-12-04 13:58:2929fe1e7a01a24a3adf61e0cf010e705dVirustotal results 41/60 (68.33%) 24.85.236.4780Heodo
2018-12-04 13:37:433bde9dc86136864fc648052a22ca8f8dVirustotal results 14/60 (23.33%) 24.85.236.4780Heodo
2018-12-04 13:28:0101d21a00ec882708fbd9e3d1e217f0ddVirustotal results 40/58 (68.97%) 24.85.236.4780Heodo
2018-12-04 13:08:30163ac1249fc9b67bbf263b610bfaa109Virustotal results 37/60 (61.67%) 24.85.236.4780Heodo
2018-12-04 12:51:56bd2d09706da652e008a3d65f9ee60330Virustotal results 14/59 (23.73%) 24.85.236.4780Heodo
2018-12-04 10:11:28550b8f57a8c90568bd64f6e972683b0bVirustotal results 15/59 (25.42%) 24.85.236.4780Heodo
2018-12-04 06:09:5731e9a9afccbdbd03b51cc148e90d7558Virustotal results 12/60 (20.00%) 24.85.236.4780Heodo
2018-12-03 22:56:473dd93830eaa52dd98f321cc8927c6d9fVirustotal results 12/60 (20.00%) 24.85.236.4780Heodo
2018-12-03 16:10:594828be595493e8e6824932b719d945b7Virustotal results 17/70 (24.29%) 24.85.236.4780Heodo
2018-12-03 12:28:39f9367630697814df89999cbfae96c849Virustotal results 47/70 (67.14%) 24.85.236.4780Heodo

# of malware samples: 21