Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 70.64.76.71. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:70.64.76.71
Hostname:S01066045cbaffba8.ss.shawcable.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS6327
AS name:SHAW - Shaw Communications Inc.
Country:- CA
First seen:2019-02-19 15:33:25 UTC
Last seen:2019-02-20 13:59:21 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-20 14:15:07930b3318eb9472fecb5e646035da6c5bVirustotal results 8/53 (15.09%) 70.64.76.718080Heodo
2019-02-20 12:10:15e053da791c172da383b2e3ab03628d71Virustotal results 51/71 (71.83%) 70.64.76.718080Heodo
2019-02-20 08:43:054d537bcf691cab81ae971dd2b5528444Virustotal results 36/54 (66.67%) 70.64.76.718080Heodo
2019-02-20 07:24:43ac48922f8b26f8a3e9d358853f087c3cVirustotal results 11/58 (18.97%) 70.64.76.718080Heodo
2019-02-20 07:19:104fa33aa1dfbb6e1942bda926a0572086Virustotal results 30/67 (44.78%) 70.64.76.718080Heodo
2019-02-19 19:35:10516a96adb985a05f2e6d8a4644d1eb48Virustotal results 48/67 (71.64%) 70.64.76.718080Heodo
2019-02-19 19:10:06dc2fdbcf2658135908a61bcba0ce3c6aVirustotal results 26/55 (47.27%) 70.64.76.718080Heodo
2019-02-19 15:54:050b6581a05ebe772a937edea89a98e0faVirustotal results 32/55 (58.18%) 70.64.76.718080Heodo
2019-02-19 15:53:2171bf51ae821bd096e1424ea877a17597Virustotal results 30/53 (56.60%) 70.64.76.718080Heodo
2019-02-19 15:47:0204aef49d1ab93fb5ceedeb216425e36cVirustotal results 10/53 (18.87%) 70.64.76.718080Heodo

# of malware samples: 10