Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 70.169.53.234. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:70.169.53.234
Hostname:wsip-70-169-53-234.tu.ok.cox.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS22773
AS name:ASN-CXA-ALL-CCI-22773-RDC - Cox Communications Inc.
Country:- US
First seen:2019-12-30 08:58:14 UTC
Last seen:2020-01-07 12:28:09 UTC
Last online:2020-01-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-07 10:06:45903009020cf234e0fc43a24c64cbc53cVirustotal results 33 / 72 (45.83%) 70.169.53.23480Heodo
2020-01-06 20:08:101a44c9cea2d030ab29c4184fc7923777Virustotal results 8 / 70 (11.43%) 70.169.53.23480Heodo
2020-01-04 22:23:37a63c33b0d99fd5b5123264c5177744e2Virustotal results 41 / 72 (56.94%) 70.169.53.23480Heodo
2019-12-30 11:49:38a92f81cb33e7cd97e825ea8f3fcf5df2Virustotal results 25 / 71 (35.21%) 70.169.53.23480Heodo
2019-12-30 08:49:57abed2191345c9df4c55dbbd8116bba83Virustotal results 33 / 73 (45.21%) 70.169.53.23480Heodo

# of malware samples: 5