Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 71.56.132.47. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:71.56.132.47
Hostname:c-71-56-132-47.hsd1.or.comcast.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7922
AS name:COMCAST-7922 - Comcast Cable Communications, LLC
Country:- US
First seen:2018-12-05 19:10:19 UTC
Last seen:2018-12-06 09:09:53 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-03-29 09:25:296842aa9192f41f0d1f151fda8d7a4a10Virustotal results 39/66 (59.09%) 71.56.132.4780Quakbot
2019-03-25 09:22:2519f37d6b787dfaffc57412a611e77502Virustotal results 33/68 (48.53%) 71.56.132.4780Quakbot
2018-12-07 08:58:052a4c4e9cc6b09f7c50f7488030a23d9cVirustotal results 22/60 (36.67%) 71.56.132.4780Heodo
2018-12-07 06:24:4051c8b7634c59a6d12a890e64ffcfab1cVirustotal results 17/69 (24.64%) 71.56.132.4780Heodo
2018-12-07 06:22:39065499273e600a176cff6e73079a6cf4Virustotal results 18/70 (25.71%) 71.56.132.4780Heodo
2018-12-07 06:22:39065499273e600a176cff6e73079a6cf4Virustotal results 18/70 (25.71%) 71.56.132.4780Heodo
2018-12-05 21:06:19884a388b711e451befbf1f5faa0f556cVirustotal results 15/69 (21.74%) 71.56.132.4780Heodo
2018-12-05 20:21:46f567811c9f63dacc370b9600e2e5abdbVirustotal results 13/59 (22.03%) 71.56.132.4780Heodo
2018-12-05 20:20:19291dcc565bfa46901231341682ee2957Virustotal results 14/58 (24.14%) 71.56.132.4780Heodo
2018-12-05 19:28:353ec63d0f076a16c91ea82c4bb58c52f0Virustotal results 13/58 (22.41%) 71.56.132.4780Heodo

# of malware samples: 10