Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 42.200.191.247. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:42.200.191.247
Hostname:42-200-191-247.static.imsbiz.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS4760
AS name:HKTIMS-AP HKT Limited
Country:- HK
First seen:2020-02-27 22:22:11 UTC
Last seen:2020-03-21 16:29:14 UTC
Last online:2020-03-28

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-22 00:44:40a4708e15384ef20b7f3ba8a3c892df1cVirustotal results 26 / 73 (35.62%) 42.200.191.24780Heodo
2020-03-15 00:39:14d8dc277cbf28b06032b12430293aa328Virustotal results 7 / 73 (9.59%) 42.200.191.24780Heodo
2020-03-06 22:43:596c931096550d2ea511cb29be455e7ec1Virustotal results 46 / 73 (63.01%) 42.200.191.24780Heodo
2020-03-04 13:08:26a275522a9339e160356a44978b4914c0Virustotal results 21 / 72 (29.17%) 42.200.191.24780Heodo
2020-03-04 11:07:2631205fb5c945be59846a9a21ca7cbe81Virustotal results 8 / 73 (10.96%) 42.200.191.24780Heodo
2020-03-04 09:32:105cf295b9864fb6faae3e7dc94ecad0d8Virustotal results 10 / 73 (13.70%) 42.200.191.24780Heodo
2020-02-28 15:28:49239d5551143cfce7d765e5877cab1f0fn/a42.200.191.24780Heodo
2020-02-28 14:19:48f041689e3ddcc351a8113d8cea31defbn/a42.200.191.24780Heodo
2020-02-28 13:18:176de6a427adc6d414b33f2e4e7fa030fan/a42.200.191.24780Heodo

# of malware samples: 9