Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 67.244.5.26. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:67.244.5.26
Hostname:cpe-67-244-5-26.nyc.res.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS12271
AS name:TWC-12271-NYC - Charter Communications Inc
Country:- US
First seen:2018-08-21 10:14:04 UTC
Last seen:2018-08-21 10:18:14 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-08-21 10:14:1449fad16fc68eb2210b42947de83ba13bVirustotal results 23/66 (34.85%) 67.244.5.268090Heodo
2018-08-21 07:18:23aa9e46b532129ed3611d921a66a9059eVirustotal results 16/68 (23.53%) 67.244.5.268090Heodo
2018-08-21 07:13:49d214bae5cd043cbfad7f550184dfbcfdVirustotal results 30/67 (44.78%) 67.244.5.268090Heodo
2018-08-21 07:05:54dcbdcc0c911742b028b02056faaeabd8Virustotal results 15/68 (22.06%) 67.244.5.268090Heodo
2018-08-20 19:17:1221cb014e88098012f4c8a2aa3a8dc62cVirustotal results 24/67 (35.82%) 67.244.5.268090Heodo
2018-08-20 15:06:51422abff42f969ee984d7640cf6bf3400Virustotal results 26/68 (38.24%) 67.244.5.268090Heodo
2018-08-20 15:06:32cc59e271759b88315c736295f4101279Virustotal results 21/67 (31.34%) 67.244.5.268090Heodo
2018-08-20 09:01:12706dc04bc5d96c79fa5d6045a06eb592Virustotal results 18/68 (26.47%) 67.244.5.268090Heodo

# of malware samples: 8