Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 58.1.242.115. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:58.1.242.115
Hostname:fntoska030019.oska.fnt.ftth4.ppp.infoweb.ne.jp
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS2510
AS name:INFOWEB FUJITSU LIMITED
Country:- JP
First seen:2020-12-12 17:02:22 UTC
Last seen:2021-01-09 17:20:05 UTC
Last online:2020-12-21

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2021-01-14 09:30:14c4086f002e78e93af7fcb3c572d76c5bVirustotal results 30 / 69 (43.48%) 58.1.242.11580Heodo
2021-01-10 14:34:10b1129ac56b0f679bbb2b93d4db349d44Virustotal results 37 / 67 (55.22%) 58.1.242.11580Heodo
2021-01-08 20:59:248dcc6be1651e9d9eba39b973cbc7715dn/a58.1.242.11580Heodo
2020-12-20 23:05:005affd20a2bdb3ca61c5f2e44ec2c8960n/a58.1.242.11580Heodo
2020-12-14 12:06:16f993030c8e3a44735f2fedf1bb5b8ab5Virustotal results 31 / 69 (44.93%) 58.1.242.11580Heodo
2020-12-14 05:48:39ebcfc1723ef14720ac4de83eb7494a9bVirustotal results 33 / 68 (48.53%) 58.1.242.11580Heodo
2020-12-13 18:24:3754851068c706fe1d0bbf4947c702395fVirustotal results 31 / 63 (49.21%) 58.1.242.11580Heodo
2020-12-12 20:12:4984c6495d4dcf9642791088c4cefab8ccVirustotal results 35 / 71 (49.30%) 58.1.242.11580Heodo
2020-12-12 19:00:254908330e01894274c64b61d5143b7565Virustotal results 37 / 71 (52.11%) 58.1.242.11580Heodo
2020-12-12 17:53:114c3ac338450e2a1198a1b1972dba3788Virustotal results 34 / 70 (48.57%) 58.1.242.11580Heodo

# of malware samples: 10