Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 37.120.175.15. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:37.120.175.15
Hostname:vserver.lucawimmer.de
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS197540
AS name:NETCUP-AS netcup GmbH
Country:- DE
First seen:2018-09-27 09:31:51 UTC
Last seen:2019-01-08 08:46:36 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 22:13:16393cea5ef3705eea337e9acdbca326c4Virustotal results 52/69 (75.36%) 37.120.175.1580Heodo
2019-01-08 20:36:47789279793d11607d15c000ff76cb30deVirustotal results 52/69 (75.36%) 37.120.175.1580Heodo
2019-01-08 08:38:08692c6f83d943cbbdf9a4cb701d6b0831Virustotal results 52/70 (74.29%) 37.120.175.1580Heodo
2019-01-08 07:58:43465012f323afbc3c8d028dc933e803cdVirustotal results 13/67 (19.40%) 37.120.175.1580Heodo
2019-01-08 07:53:41492ff9aa1e1eb51c5e5ba6db4b400c90Virustotal results 53/70 (75.71%) 37.120.175.1580Heodo
2018-11-19 20:17:1449c2629c0ed95f6f9bc36b244f8872a0Virustotal results 14/67 (20.90%) 37.120.175.1580Heodo
2018-11-18 03:49:1675120ed07cc1ab6bc44abbfd014469b6Virustotal results 39/67 (58.21%) 37.120.175.1580Heodo
2018-11-18 03:36:125bc653287125c9f15f50adbe98303f23Virustotal results 39/68 (57.35%) 37.120.175.1580Heodo
2018-11-18 02:31:40edbfab7ac452c69805ab1632cc8111f7Virustotal results 43/67 (64.18%) 37.120.175.1580Heodo
2018-11-18 01:52:032730f3b299d24720e34f81ffcf0f69eeVirustotal results 24/67 (35.82%) 37.120.175.1580Heodo
2018-11-15 10:32:04516f0945009ddc49101d8b60577c529aVirustotal results 11/68 (16.18%) 37.120.175.1580Heodo
2018-11-14 21:05:00b8f69865ce84c9cf65e5124c5eb98b5aVirustotal results 14/58 (24.14%) 37.120.175.1580Heodo
2018-11-14 21:04:33b7b91e43a40df170ae34b303bf3d49e8Virustotal results 34/66 (51.52%) 37.120.175.1580Heodo
2018-11-11 10:14:02d22e5b21ad55aa78f1925d5f92aeec34Virustotal results 14/66 (21.21%) 37.120.175.1580Heodo
2018-11-07 10:34:1487c62af3fbf1eb646b08d1dd58f07477Virustotal results 17/67 (25.37%) 37.120.175.1580Heodo
2018-11-07 10:05:50b9e2d6dfe8001eb32285101ffb31b076Virustotal results 19/57 (33.33%) 37.120.175.1580Heodo
2018-11-07 09:35:59cdca0cbd16781ff2a1b9d7fea1702018Virustotal results 35/59 (59.32%) 37.120.175.1580Heodo
2018-11-07 08:50:3393c5ce7b57a10652bacd46dfecb159f7Virustotal results 15/58 (25.86%) 37.120.175.1580Heodo
2018-11-07 08:06:285c28a4f3c18e7f23a26b168a2d914302Virustotal results 12/59 (20.34%) 37.120.175.1580Heodo
2018-11-06 08:09:5687c9446401870688c642f9615bbcb554Virustotal results 10/66 (15.15%) 37.120.175.1580Heodo
2018-11-05 15:21:59fb475f021c19f3018002dadbcb8e3d1eVirustotal results 34/68 (50.00%) 37.120.175.1580Heodo
2018-11-05 15:21:59fb475f021c19f3018002dadbcb8e3d1eVirustotal results 34/68 (50.00%) 37.120.175.1580Heodo
2018-11-05 13:05:566f1fdbe2a4c5997c2f03c60f6016ecc0Virustotal results 35/67 (52.24%) 37.120.175.1580Heodo
2018-11-05 13:05:566f1fdbe2a4c5997c2f03c60f6016ecc0Virustotal results 35/67 (52.24%) 37.120.175.1580Heodo
2018-11-05 11:59:220c816b988df733630b183276afef751fVirustotal results 39/65 (60.00%) 37.120.175.1580Heodo

# of malware samples: 25