Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 27.72.113.79. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:27.72.113.79
Hostname:dynamic-ip-adsl.viettel.vn
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7552
AS name:VIETEL-AS-AP Viettel Group
Country:- VN
First seen:2018-12-10 12:18:28 UTC
Last seen:2019-03-24 03:30:29 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-03-24 06:18:21e3011e46efebabfb7efe3f989097388fVirustotal results 52/70 (74.29%) 27.72.113.798090Heodo
2019-03-12 17:53:29433812503e6abb9e10d935ea672bd8c7Virustotal results 15/69 (21.74%) 27.72.113.798090Heodo
2019-03-12 12:23:53a5c22bee6306775e5e8ed23e7cedc2ebVirustotal results 21/68 (30.88%) 27.72.113.798090Heodo
2019-03-12 12:00:310794190cc8e881074835cac9562f3c68Virustotal results 35/56 (62.50%) 27.72.113.798090Heodo
2019-03-12 11:40:225a059b35d1d031799b32b6c727fa0251Virustotal results 20/64 (31.25%) 27.72.113.798090Heodo
2019-03-12 11:25:30bae7ea1a5f07e08f3a43f52e8b1c4184Virustotal results 44/65 (67.69%) 27.72.113.798090Heodo
2019-03-12 11:15:024f6e482642e9a06a95c454cf1e0f57cdVirustotal results 18/64 (28.12%) 27.72.113.798090Heodo
2019-03-12 11:09:375800569bb622cdfc32f8263e877496dcVirustotal results 12/60 (20.00%) 27.72.113.798090Heodo
2019-03-12 11:02:353677eefe41ed338b9b3e1a8c01320003Virustotal results 16/64 (25.00%) 27.72.113.798090Heodo
2019-03-12 10:24:03c364e3ac7af81052cb5c3442743cf104Virustotal results 11/56 (19.64%) 27.72.113.798090Heodo
2019-03-12 10:14:48b3cd675f3f8f98d547edde23355a430aVirustotal results 17/65 (26.15%) 27.72.113.798090Heodo
2019-03-12 10:13:140b5d1f1fbfa11f19aa80d0a95be3a8a0Virustotal results 46/66 (69.70%) 27.72.113.798090Heodo
2019-03-12 09:26:28d6b495b09228f2bfee27888b7ba1891dVirustotal results 16/63 (25.40%) 27.72.113.798090Heodo
2019-03-12 08:57:42cbc503305d94a394de06a87fe44c7e18Virustotal results 41/65 (63.08%) 27.72.113.798090Heodo
2019-03-12 08:40:25b57a171ee1ecfaf536461b241ab67c2bVirustotal results 45/70 (64.29%) 27.72.113.798090Heodo
2019-03-12 08:32:08f85c492e5e0d965ae80a383aadfdfec4Virustotal results 20/64 (31.25%) 27.72.113.798090Heodo
2019-03-12 08:28:38e03419a555935334713c51f7e95c50f1Virustotal results 14/66 (21.21%) 27.72.113.798090Heodo
2019-03-12 08:15:53ae20734fea1266cd0b04f07f8829bc49Virustotal results 13/68 (19.12%) 27.72.113.798090Heodo
2019-03-12 08:14:221ee72af76e3497ac0a8434bfc70a9091Virustotal results 48/68 (70.59%) 27.72.113.798090Heodo
2019-03-12 08:14:07e05c9501feeae37dc08d389ca6940359Virustotal results 14/65 (21.54%) 27.72.113.798090Heodo
2019-03-12 08:05:45e7a1e5f5ba236f08b63df3454067f231Virustotal results 47/67 (70.15%) 27.72.113.798090Heodo
2019-03-12 07:55:4451eda1cb47c72dfc2fa3b75f520ee669Virustotal results 14/63 (22.22%) 27.72.113.798090Heodo
2019-03-12 07:08:41f6635f6e57e12258a6f7201eb6f9f073Virustotal results 30/65 (46.15%) 27.72.113.798090Heodo
2019-03-12 05:56:378277caa78e46118f7a9111bb432f5c2fVirustotal results 44/68 (64.71%) 27.72.113.798090Heodo
2019-03-12 05:25:1421c981ef890a8edb331229e4fca5b424Virustotal results 39/59 (66.10%) 27.72.113.798090Heodo
2019-03-12 05:07:50bff00745c69ca34f4596852a17be80b6Virustotal results 36/56 (64.29%) 27.72.113.798090Heodo
2019-03-12 04:56:281f8f3dfa0564649d034796b76185ac2eVirustotal results 12/55 (21.82%) 27.72.113.798090Heodo
2019-03-12 02:02:19602f6047fd784d18935766d8c80aa12fVirustotal results 17/66 (25.76%) 27.72.113.798090Heodo
2019-03-11 23:36:071ec6dc531b2992a66beb4da0c24fd6ceVirustotal results 13/57 (22.81%) 27.72.113.798090Heodo
2019-03-11 23:22:28f5b7d91cfa16e3df1cdf42357af41ba5Virustotal results 45/70 (64.29%) 27.72.113.798090Heodo
2019-03-11 22:56:082c147ec20ac3a3f3a64aae45a69ec41bVirustotal results 15/65 (23.08%) 27.72.113.798090Heodo
2019-03-11 22:55:34ebc63232ece6ed3ddb9770a52623a75bVirustotal results 49/70 (70.00%) 27.72.113.798090Heodo
2019-03-11 22:00:405eb6d31b80a1e6e718ac7c74df8712e9Virustotal results 44/65 (67.69%) 27.72.113.798090Heodo
2019-03-11 21:35:29e69970420ca4ca43b64e27c49474c13dVirustotal results 17/71 (23.94%) 27.72.113.798090Heodo
2019-03-11 20:11:104178d544abd8ceea87181882a3e9d6f9Virustotal results 15/69 (21.74%) 27.72.113.798090Heodo
2019-03-11 20:07:01b45df5fa3e192820fcac83c7dbe49beeVirustotal results 21/64 (32.81%) 27.72.113.798090Heodo
2019-03-11 19:48:5185d6697e9cbaf418325ac5c39aa8be82Virustotal results 16/66 (24.24%) 27.72.113.798090Heodo
2019-03-11 19:45:03ea1ed3bdd3f1f9bf36472faef1897621n/a27.72.113.798090Heodo
2019-03-11 19:42:19b7c19073836e253f752e843fd2c2196fVirustotal results 10/64 (15.62%) 27.72.113.798090Heodo
2019-03-11 19:38:42761ab3726dae5266024db82d84320405Virustotal results 11/65 (16.92%) 27.72.113.798090Heodo
2019-03-11 17:07:30df0484c54c431b5162d7135eac0b507fVirustotal results 36/56 (64.29%) 27.72.113.798090Heodo
2019-03-11 15:08:0239296fa93a3f801b90c7540d0e714aebn/a27.72.113.798090Heodo
2019-03-11 14:21:28e96f9b97ecb47e80effa864f124817b8Virustotal results 14/64 (21.88%) 27.72.113.798090Heodo
2019-03-11 13:47:25f4351912fbccc578cdcb7e4e99e0d526Virustotal results 40/66 (60.61%) 27.72.113.798090Heodo
2018-12-10 23:06:123e62cb6753a8c095568ab223b5ce20e8Virustotal results 9/70 (12.86%) 27.72.113.798090Heodo

# of malware samples: 45