Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 69.198.17.20. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:69.198.17.20
Hostname:69-198-17-20.customerip.birch.net
Status:Offline
Spamhaus SBL:SBL427062
Malware:Heodo -
AS number:AS17184
AS name:ATL-CBEYOND - CBEYOND COMMUNICATIONS, LLC
Country:- US
First seen:2018-09-25 16:36:42 UTC
Last seen:2019-01-08 09:35:09 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 21:50:495cf6f6ee26cd1d28aa723fd01c084f2dVirustotal results 49/69 (71.01%) 69.198.17.208080Heodo
2019-01-08 16:40:11202bab72146ceafcfb82ae2d3c9fb795Virustotal results 17/71 (23.94%) 69.198.17.208080Heodo
2019-01-08 16:36:49fc6e674fb7b15b9f5ebfdf2215b45989Virustotal results 50/69 (72.46%) 69.198.17.208080Heodo
2019-01-08 14:38:46ee3c47e91e8c5297ddc23691aba9168eVirustotal results 41/67 (61.19%) 69.198.17.208080Heodo
2019-01-08 12:52:19e054dcf1951a0814de5e36b67bc9b21aVirustotal results 47/68 (69.12%) 69.198.17.208080Heodo
2019-01-08 12:49:576b56800a192bf80d4cfd6aa2ed2437bcVirustotal results 45/69 (65.22%) 69.198.17.208080Heodo
2019-01-08 12:35:09e4a6ac98cc7971a87a3f580449511da1Virustotal results 50/70 (71.43%) 69.198.17.208080Heodo
2019-01-08 11:31:189eebe2348376543dbad35eb393793020Virustotal results 19/69 (27.54%) 69.198.17.208080Heodo
2019-01-08 10:23:1995aa04ca201b78dc55f2aab49c27d6b0Virustotal results 49/70 (70.00%) 69.198.17.208080Heodo
2019-01-08 08:53:56afb1183c82aadcfe1bea527e991bb8b0Virustotal results 50/72 (69.44%) 69.198.17.208080Heodo
2019-01-08 08:00:5827a6c62b3e3b1ffc542ba9929c321453Virustotal results 45/67 (67.16%) 69.198.17.208080Heodo
2019-01-08 07:59:329b020de5b7b22029914b661fa5609b6bVirustotal results 49/69 (71.01%) 69.198.17.208080Heodo
2018-12-21 09:28:3797b8c37e8df6ea660fbed08c06ad62f4Virustotal results 18/59 (30.51%) 69.198.17.208080Heodo
2018-12-19 15:12:43b9fd10e2b45ad2c43ef58d70dcc95b47Virustotal results 15/59 (25.42%) 69.198.17.208080Heodo
2018-12-19 09:18:482f1d351d0298c19edb25b3da55256aafVirustotal results 17/58 (29.31%) 69.198.17.208080Heodo
2018-12-13 22:33:4087e39af4cab480c1635035cdbeda0bcfVirustotal results 16/60 (26.67%) 69.198.17.208080Heodo
2018-12-13 22:32:237e06bd8189ba453367dc00fd57146a8dVirustotal results 16/59 (27.12%) 69.198.17.208080Heodo
2018-12-13 22:30:215a83d8bb7b5c36336b2332afea378fd4Virustotal results 16/59 (27.12%) 69.198.17.208080Heodo
2018-12-13 17:21:30c8da82ace5a3bc1f5bb574e57e87a251Virustotal results 15/69 (21.74%) 69.198.17.208080Heodo
2018-12-12 13:25:028dc59c40f624f5d058cab88d952a8a58Virustotal results 13/61 (21.31%) 69.198.17.208080Heodo
2018-12-12 00:46:458e616586e92061ebe4571f39c1814c10Virustotal results 37/60 (61.67%) 69.198.17.208080Heodo
2018-12-11 21:33:2139c4dc52418969a25b35e131410cfb88Virustotal results 38/59 (64.41%) 69.198.17.208080Heodo

# of malware samples: 22