Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 37.211.49.127. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:37.211.49.127
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS42298
AS name:GCC-MPLS-PEERING GCC MPLS peering
Country:- QA
First seen:2019-12-18 15:32:15 UTC
Last seen:2019-12-23 06:36:23 UTC
Last online:2019-12-19

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-23 07:40:528dfe4a372bde2e1209a0aabf95cefff1Virustotal results 14 / 71 (19.72%) 37.211.49.12780Heodo
2019-12-21 10:50:36a268ba75e53f641241f4e651ca126d85Virustotal results 15 / 71 (21.13%) 37.211.49.12780Heodo
2019-12-20 08:20:4989602f56d49b18824e6fcff7991c2fe1Virustotal results 6 / 73 (8.22%) 37.211.49.12780Heodo
2019-12-19 00:57:0918f834f2f324fe29ddee3d41339abd2dVirustotal results 12 / 72 (16.67%) 37.211.49.12780Heodo
2019-12-18 18:55:425b1c2227966c750c46ddff63b3ac1acaVirustotal results 15 / 70 (21.43%) 37.211.49.12780Heodo

# of malware samples: 5