Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 61.221.152.140. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:61.221.152.140
Hostname:61-221-152-140.HINET-IP.hinet.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS3462
AS name:HINET Data Communication Business Group
Country:- TW
First seen:2020-01-16 19:44:19 UTC
Last seen:2020-02-04 01:40:13 UTC
Last online:2020-01-31

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-02-04 02:44:20b8e4b7ece65f1736d0863bf16a6f5961Virustotal results 41 / 73 (56.16%) 61.221.152.14080Heodo
2020-01-28 22:55:380f9dcdde1d1a729aa927b2615b9866f9Virustotal results 57 / 72 (79.17%) 61.221.152.14080Heodo
2020-01-28 20:02:478496b16b5d7301d37129f6b2d7c3a5c9Virustotal results 57 / 72 (79.17%) 61.221.152.14080Heodo
2020-01-25 17:17:46a8a2ab7f643c1121683ccaf3fec96a18Virustotal results 37 / 73 (50.68%) 61.221.152.14080Heodo
2020-01-20 13:40:20179d64c810781aa8c0ea1cd64f12f1fdVirustotal results 8 / 71 (11.27%) 61.221.152.14080Heodo
2020-01-20 10:53:05028a042b840c99d9013d97dc6a99b37fn/a61.221.152.14080Heodo
2020-01-20 10:41:553f998564723998b580d2557800eede89n/a61.221.152.14080Heodo
2020-01-20 10:11:51d937ee887861683c631c60c368674fefn/a61.221.152.14080Heodo
2020-01-20 09:07:585ff7015c709be1df296599f2eaf918c4n/a61.221.152.14080Heodo
2020-01-20 00:39:220aba039dc26a8937dd5d5bd3fce2f303Virustotal results 20 / 63 (31.75%) 61.221.152.14080Heodo
2020-01-18 22:49:13a9078585c8e64172c817dd1ce4fde840Virustotal results 17 / 72 (23.61%) 61.221.152.14080Heodo
2020-01-18 11:28:33a7641302081cc1e9c1965925040b2240Virustotal results 18 / 73 (24.66%) 61.221.152.14080Heodo
2020-01-18 11:28:148b0082d1b2e55bc128f7771532b14148Virustotal results 15 / 73 (20.55%) 61.221.152.14080Heodo
2020-01-18 11:26:217c83f3103d1f117e325747c4285cb119Virustotal results 5 / 71 (7.04%) 61.221.152.14080Heodo
2020-01-18 10:23:0709caf869977f286234b3f5759bdb7b97Virustotal results 11 / 71 (15.49%) 61.221.152.14080Heodo
2020-01-18 07:10:129726f813f671e560d74d5f9dce7af3ceVirustotal results 8 / 71 (11.27%) 61.221.152.14080Heodo
2020-01-18 07:02:25c247cfbb6349d2e7361867775206b213n/a61.221.152.14080Heodo
2020-01-18 05:34:49642c102bd4f50759aa1f71b2a6974173n/a61.221.152.14080Heodo
2020-01-18 05:27:39523307d10f3c5ae2fc409657ca2c5e39Virustotal results 9 / 72 (12.50%) 61.221.152.14080Heodo
2020-01-18 03:46:18a9e6f55f32671bcbed7e07deaf642ee7Virustotal results 6 / 71 (8.45%) 61.221.152.14080Heodo
2020-01-18 03:02:36a287c7eafc83fcb394ba4c375254e2ceVirustotal results 5 / 72 (6.94%) 61.221.152.14080Heodo
2020-01-18 02:57:19d7adb61334ed3dcf2330a17eff504911Virustotal results 5 / 72 (6.94%) 61.221.152.14080Heodo
2020-01-18 02:53:48087fdea581623c31ff1c79ab298cf0d5Virustotal results 5 / 72 (6.94%) 61.221.152.14080Heodo
2020-01-18 00:37:12db9237b90ebad5f45367e63901425b0bVirustotal results 9 / 71 (12.68%) 61.221.152.14080Heodo
2020-01-18 00:36:54d85aa3af6eff9b13232f3f0c62251c34Virustotal results 8 / 73 (10.96%) 61.221.152.14080Heodo
2020-01-17 23:35:308fa681d394c3a36b44820d0cd369f320n/a61.221.152.14080Heodo
2020-01-17 22:58:25cd3d4cc4a3cb62531337046ffbbaf772Virustotal results 9 / 72 (12.50%) 61.221.152.14080Heodo
2020-01-17 20:59:56299930c7f37369c3d785866339dc1cbbn/a61.221.152.14080
2020-01-17 19:12:02e69057a9b31df29378f86543e4159c57Virustotal results 10 / 71 (14.08%) 61.221.152.14080Heodo
2020-01-17 18:09:46dd1112156983811728c78def433a1ef7Virustotal results 10 / 72 (13.89%) 61.221.152.14080Heodo
2020-01-17 18:09:3754216f5f6c291db053a7296bc8b735e1Virustotal results 10 / 73 (13.70%) 61.221.152.14080Heodo
2020-01-17 18:06:10f66b828bb3a83bcde85f414c6b695990n/a61.221.152.14080Heodo
2020-01-17 06:05:2643d6c526549d9ae7457ac76c1e1ef55cVirustotal results 12 / 71 (16.90%) 61.221.152.14080Heodo
2013-03-10 02:54:28886cb8f8a94c4ba473bb5f6131b96a63Virustotal results 44/46 (95.65%) 61.221.152.14080

# of malware samples: 34