Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 27.109.153.201. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:27.109.153.201
Hostname:nz153l201.bb27109.ctm.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4609
AS name:CTM-MO Companhia de Telecomunicacoes de Macau SARL
Country:- MO
First seen:2020-01-09 23:00:36 UTC
Last seen:2020-01-18 04:40:13 UTC
Last online:2020-01-17

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-18 04:58:5438eb1c3853cb0631df16f464b8b3ceb8Virustotal results 13 / 61 (21.31%) 27.109.153.2018090Heodo
2020-01-17 22:02:28ad1fb794d141ffbfca7ece3b13326a82Virustotal results 37 / 71 (52.11%) 27.109.153.2018090Heodo
2020-01-17 20:36:21a4efabcfa180627fca81da64b8fe2acaVirustotal results 10 / 72 (13.89%) 27.109.153.2018090Heodo
2020-01-16 14:13:029fe3a159f719546d2dd198bb06a87b53n/a27.109.153.2018090Heodo
2020-01-16 01:54:49a35b0bc29d5a714d09e1b43e608951adVirustotal results 3 / 72 (4.17%) 27.109.153.2018090Heodo
2020-01-14 21:12:1694e4261d56368de48881ee3111e3340cn/a27.109.153.2018090Heodo

# of malware samples: 6