Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 61.37.31.243. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:61.37.31.243
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS3786
AS name:LGDACOM LG DACOM Corporation
Country:- KR
First seen:2020-01-21 19:06:22 UTC
Last seen:2020-03-10 16:47:16 UTC
Last online:2020-03-13

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-15 02:46:24455f2af761256ff658f3827b266349f5Virustotal results 32 / 72 (44.44%) 61.37.31.24380Heodo
2020-03-10 08:56:37aeb2cd04d68ff973398c120b48506da7Virustotal results 20 / 72 (27.78%) 61.37.31.24380Heodo
2020-03-09 23:01:4848f9f619ef477c170c72c15c4b1f3d81Virustotal results 33 / 71 (46.48%) 61.37.31.24380Heodo
2020-03-09 15:43:39bd28b7c97998960d0d81911a57d1322aVirustotal results 21 / 73 (28.77%) 61.37.31.24380Heodo
2020-03-09 14:25:28c0cb4de69b9da403f5aacaf405be83b8Virustotal results 20 / 72 (27.78%) 61.37.31.24380Heodo
2020-01-21 22:22:09535136c18c14452de87de49969e9e397Virustotal results 13 / 62 (20.97%) 61.37.31.24380Heodo

# of malware samples: 6