Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 40.131.31.201. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:40.131.31.201
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7029
AS name:WINDSTREAM - Windstream Communications LLC
Country:- US
First seen:2018-09-13 07:12:41 UTC
Last seen:2018-11-11 10:58:11 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-11-09 11:32:44a10ff0f0246523ed75fcbe8ad4d13356Virustotal results 34/67 (50.75%) 40.131.31.201993Heodo
2018-09-16 23:12:2424732d32eade9100e7909058831e66c7Virustotal results 38/68 (55.88%) 40.131.31.201993Heodo
2018-09-16 17:31:344fd2307313cecd37e9bfe34083cbb66bVirustotal results 37/67 (55.22%) 40.131.31.201993Heodo
2018-09-14 11:27:5492976960839724685206731e19231c2aVirustotal results 18/68 (26.47%) 40.131.31.201993Heodo
2018-09-14 07:29:19ad128a1f1462962c80ea9fdd2e153731Virustotal results 12/67 (17.91%) 40.131.31.201993Heodo
2018-09-14 07:27:35961b392ede4cbf2419e10d52a604fc91Virustotal results 15/68 (22.06%) 40.131.31.201993Heodo
2018-09-14 07:03:09d0549738d2bb5ab978c780268c293bf2Virustotal results 10/67 (14.93%) 40.131.31.201993Heodo
2018-09-14 06:18:45e8fa19b08b1325e75106e3f9b18144b1Virustotal results 23/65 (35.38%) 40.131.31.201993Heodo
2018-09-13 16:50:55dc3da5beb337edbadac662f582a07decVirustotal results 12/68 (17.65%) 40.131.31.201993Heodo
2018-09-13 12:12:296bf901c649f5c8dc61ecbf32d97c984cVirustotal results 11/68 (16.18%) 40.131.31.201993Heodo
2018-09-13 11:32:530c01164034fd814a4b9c9f38f81f614eVirustotal results 16/67 (23.88%) 40.131.31.201993Heodo
2018-09-13 11:29:495aa5eeb9e2ca3eba82ea1994e4b6d1efVirustotal results 12/68 (17.65%) 40.131.31.201993Heodo
2018-09-13 07:09:411b3b0b8b078335d59d46fbd9f7382ee0Virustotal results 17/68 (25.00%) 40.131.31.201993Heodo
2018-09-13 07:04:43303b167d9d50f39c09ec231c3830c122Virustotal results 20/67 (29.85%) 40.131.31.201993Heodo

# of malware samples: 14