Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 5.196.73.78. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:5.196.73.78
Hostname:ns384090.ip-5-196-73.eu
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS16276
AS name:OVH, FR
Country:- FR
First seen:2018-09-02 23:56:03 UTC
Last seen:never

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 11:00:174a42c34c1998732ab243d44619c3f244Virustotal results 45/68 (66.18%) 5.196.73.7880Heodo
2018-09-02 23:56:0300b0c98dd6086697b4d331ea37a388c7n/a5.196.73.7880Heodo
2018-08-28 07:44:30bf9a87c2b1a0108cbe6b02470da63f75Virustotal results 39/68 (57.35%) 5.196.73.7880Heodo
2018-08-23 15:37:069780635bb724f48fd91f9d30c438eba0Virustotal results 15/65 (23.08%) 5.196.73.7880Heodo
2018-08-23 14:45:27f02cb867a2fd5d0aa9cd75ba7057fac8Virustotal results 17/68 (25.00%) 5.196.73.7880Heodo
2018-08-23 11:04:39657c51f1dc665a733eafe8a98c148d49Virustotal results 14/68 (20.59%) 5.196.73.7880Heodo
2018-08-23 10:59:2586d37a3d00b388e6b4bdeea73b269996Virustotal results 14/66 (21.21%) 5.196.73.7880Heodo
2018-08-23 10:06:4795f3be6bf7f6e751e812cfc226708261Virustotal results 17/66 (25.76%) 5.196.73.7880Heodo
2018-08-23 06:21:598195ed6f58e3056a21d3d50534341682Virustotal results 20/68 (29.41%) 5.196.73.7880Heodo
2018-08-23 06:14:289430a0fc1be712057c2ca586f54b4b5bVirustotal results 30/68 (44.12%) 5.196.73.7880Heodo
2018-08-23 06:12:45de6586d55c49f0c52c116a106b767735Virustotal results 19/68 (27.94%) 5.196.73.7880Heodo
2018-08-23 06:00:40e4048a243cfcd8cf90318fd8b00453c7Virustotal results 12/67 (17.91%) 5.196.73.7880Heodo
2018-08-22 13:53:1156f06df3a85a61153d2d2019c78a885dVirustotal results 13/67 (19.40%) 5.196.73.7880Heodo
2018-08-22 13:41:17a0495dd86e7faca8e55056be7837dc81Virustotal results 18/68 (26.47%) 5.196.73.7880Heodo
2018-08-22 11:37:196b708280e5a6f7d57ba51aeb817d8d89Virustotal results 13/68 (19.12%) 5.196.73.7880Heodo
2018-08-22 09:31:50547a7c0cb2b96f8037c425c4f94b28e9Virustotal results 11/68 (16.18%) 5.196.73.7880Heodo
2018-08-22 08:06:23a83eab98a0dfee64822ef3de712e5cf0Virustotal results 33/66 (50.00%) 5.196.73.7880Heodo
2018-08-22 07:59:4430ee1d25489eca067375a4eec47fa367Virustotal results 10/67 (14.93%) 5.196.73.7880Heodo
2018-08-22 07:55:39144ac5c2f61158b9a7d9acd0b7b84eb0Virustotal results 22/68 (32.35%) 5.196.73.7880Heodo
2018-08-22 07:53:4654cbe1ee5effca9e3b19d7e0791b57abVirustotal results 33/68 (48.53%) 5.196.73.7880Heodo
2018-08-22 07:28:29e4a89b80a35a4859dee86e4b014c8843Virustotal results 16/66 (24.24%) 5.196.73.7880Heodo
2018-08-22 07:19:45b7117b716bc81cec5d4279082344afb3Virustotal results 14/68 (20.59%) 5.196.73.7880Heodo
2018-08-22 06:55:10e45dd5e418c0a9998eea24b9529b0b23Virustotal results 17/68 (25.00%) 5.196.73.7880Heodo
2018-08-21 19:10:332e5551862ced4d0077bacdafceb0927bVirustotal results 15/67 (22.39%) 5.196.73.7880Heodo
2018-08-21 13:25:46b7a7fa31000e5847bc6699ec9151e883Virustotal results 27/68 (39.71%) 5.196.73.7880Heodo
2018-08-21 13:20:32c20d24bfcd8d74f446367baf14c8b84cVirustotal results 23/67 (34.33%) 5.196.73.7880Heodo
2018-08-21 11:09:48de899b812327353e852e8beec12c0dd2Virustotal results 18/68 (26.47%) 5.196.73.7880Heodo

# of malware samples: 27