Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 59.148.227.190. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:59.148.227.190
Hostname:059148227190.ctinets.com
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS9269
AS name:HKBN-AS-AP Hong Kong Broadband Network Ltd.
Country:- HK
First seen:2019-12-20 07:53:18 UTC
Last seen:2020-01-03 11:29:05 UTC
Last online:2020-02-17

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-12 12:55:09cf21099b1ea7b58dfec2c00d6f6b92c0n/a59.148.227.19080Heodo
2020-01-12 12:05:154376cf2d0f09e130e77fc27ed5c7906fn/a59.148.227.19080Heodo
2020-01-12 12:03:34d9cabbd2063337379bd5237e3c0fbe1en/a59.148.227.19080Heodo
2020-01-12 12:01:42276a7a90f60ef0fb5fc3db22d5200e00n/a59.148.227.19080Heodo
2020-01-12 12:01:25bbb048affc83443456206d55aa71c106Virustotal results 16 / 62 (25.81%) 59.148.227.19080Heodo
2020-01-12 12:01:01315b396d0bcbbc11b650ac7f512ef374n/a59.148.227.19080Heodo
2020-01-12 11:50:542f9c04aa3f697955ca1d86c19ea9fa8dVirustotal results 16 / 61 (26.23%) 59.148.227.19080Heodo
2020-01-12 11:47:148bf19cd5a0fd4eae95349ba7f958318aVirustotal results 16 / 61 (26.23%) 59.148.227.19080Heodo
2020-01-04 22:23:37a63c33b0d99fd5b5123264c5177744e2Virustotal results 41 / 72 (56.94%) 59.148.227.19080Heodo
2019-12-24 09:55:48a63f3247022d68940ba11b65b93ac39cVirustotal results 35 / 73 (47.95%) 59.148.227.19080Heodo
2019-12-20 19:09:2120177020ac92c57adda92d56c1014b9cVirustotal results 4 / 72 (5.56%) 59.148.227.19080Heodo

# of malware samples: 11