Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 68.203.213.226. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:68.203.213.226
Hostname:cpe-68-203-213-226.rgv.res.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS11427
AS name:TWC-11427-TEXAS
Country:- US
First seen:2020-03-28 23:12:13 UTC
Last seen:2020-04-27 02:22:52 UTC
Last online:2020-04-04

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-04-28 20:36:511273ee8de13dd39def8af842b1b729baVirustotal results 41 / 72 (56.94%) 68.203.213.22680Heodo
2020-04-14 08:27:369df52380b30de674be411a6bdd882226Virustotal results 8 / 71 (11.27%) 68.203.213.22680Heodo
2020-04-13 18:54:522f0f8a59bee355a09b8d7040553a5903Virustotal results 12 / 72 (16.67%) 68.203.213.22680Heodo
2020-04-10 17:46:248070acedd3a623d0f31d90e7961b9d8aVirustotal results 51 / 72 (70.83%) 68.203.213.22680Heodo

# of malware samples: 4