Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 31.27.59.105. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:31.27.59.105
Hostname:net-31-27-59-105.cust.vodafonedsl.it
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS30722
AS name:VODAFONE-IT-ASN
Country:- IT
First seen:2020-12-28 18:56:04 UTC
Last seen:2021-01-20 19:14:27 UTC
Last online:2021-01-24

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2021-01-20 23:00:38f6810ed763b58420a1b506e87d5bc68bVirustotal results 25 / 68 (36.76%) 31.27.59.10580Heodo
2021-01-20 22:12:26a283cd4e219476606db927361a742e77n/a31.27.59.10580Heodo
2021-01-20 22:09:548973908d03dde95e2c0ffc01b24a1a1en/a31.27.59.10580Heodo
2021-01-20 22:04:388ca901484fc01dd35ef1e959ed3b4864n/a31.27.59.10580Heodo
2021-01-20 21:55:18738f655030322f69f751821dded0a1a3n/a31.27.59.10580Heodo
2021-01-20 21:48:4061f46eb3b3126c91251372bb796557d6Virustotal results 29 / 69 (42.03%) 31.27.59.10580Heodo
2021-01-11 23:30:138af5a393ac2862c364f7f40ac1aaabdbVirustotal results 50 / 69 (72.46%) 31.27.59.10580Heodo
2021-01-10 19:39:3743eee92c6519976fd98f302542be822dVirustotal results 49 / 70 (70.00%) 31.27.59.10580Heodo

# of malware samples: 8