Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 41.60.200.34. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:41.60.200.34
Hostname:41.60.200.34.liquidtelecom.net
Status:Offline
Spamhaus SBL:SBL472345
Malware:Heodo -
AS number:AS30844
AS name:LIQUID-AS
Country:- ZW
First seen:2020-01-06 23:31:47 UTC
Last seen:2020-04-03 08:48:11 UTC
Last online:2020-04-09

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-04-03 09:09:15dbbae51ad48eaf0e18a6e803eace7674n/a41.60.200.3480Heodo
2020-03-15 00:39:14d8dc277cbf28b06032b12430293aa328Virustotal results 7 / 73 (9.59%) 41.60.200.3480Heodo
2020-02-04 14:56:30772dbd5093bb9ba17cb3ec56006f3adeVirustotal results 6 / 71 (8.45%) 41.60.200.3480Heodo
2020-02-04 13:37:213943ff32a0efd8ac29e014dd136e57f9Virustotal results 20 / 71 (28.17%) 41.60.200.3480Heodo
2020-01-21 22:22:09535136c18c14452de87de49969e9e397Virustotal results 13 / 62 (20.97%) 41.60.200.3480Heodo

# of malware samples: 5