Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 72.229.97.235. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:72.229.97.235
Hostname:cpe-72-229-97-235.nyc.res.rr.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS12271
AS name:TWC-12271-NYC
Country:- US
First seen:2020-12-17 18:22:34 UTC
Last seen:2021-01-22 22:10:51 UTC
Last online:2020-12-22

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2021-01-23 06:32:42a984f2d060af322b058aec32e0b8506eVirustotal results 51 / 70 (72.86%) 72.229.97.23580Heodo
2021-01-22 22:23:2903642daaed337d901f06744887561ceaVirustotal results 54 / 70 (77.14%) 72.229.97.23580Heodo
2021-01-17 16:18:17d01e53cfdb4c2475c83a3b8a84a6c665Virustotal results 50 / 70 (71.43%) 72.229.97.23580Heodo
2021-01-17 08:35:55b783cfbbee245da415f5b0b0d522be17Virustotal results 42 / 70 (60.00%) 72.229.97.23580Heodo
2021-01-16 20:44:28132778a40a6d3e32503e1d7310246e64Virustotal results 50 / 71 (70.42%) 72.229.97.23580Heodo
2021-01-10 18:47:27030536214ff2410b7a046729bb833738Virustotal results 48 / 66 (72.73%) 72.229.97.23580Heodo
2021-01-08 20:59:248dcc6be1651e9d9eba39b973cbc7715dn/a72.229.97.23580Heodo
2021-01-08 00:15:169369d947e606a65cdc113ad8a0a539d9n/a72.229.97.23580Heodo
2021-01-07 16:28:16fe5a3a175d8197c543e374ffa01a4cb4Virustotal results 33 / 57 (57.89%) 72.229.97.23580Heodo
2021-01-07 10:47:29cc0ffbf7c203a6547bedd49949e2edcbVirustotal results 44 / 70 (62.86%) 72.229.97.23580Heodo
2021-01-04 22:17:5955e31b95af8f5a743e38fabae24f5b91n/a72.229.97.23580Heodo
2020-12-30 10:49:539507f5921b3dbe09b8cf96522b799b11Virustotal results 39 / 70 (55.71%) 72.229.97.23580Heodo
2020-12-24 18:02:40fa498e1535fa8a5f139b614326cae744n/a72.229.97.23580Heodo
2020-12-21 00:11:328bf074c02b978ea774563337720cfb6an/a72.229.97.23580Heodo
2020-12-21 00:09:46891ccc692a46d36190be3b5a2682f122n/a72.229.97.23580Heodo
2020-12-20 23:05:005affd20a2bdb3ca61c5f2e44ec2c8960n/a72.229.97.23580Heodo
2020-12-20 20:02:535ea60674e482a6cc07f6be7bf044bce0n/a72.229.97.23580Heodo
2020-12-19 19:06:45090fd8d2abb3235b8934e621472feaa1Virustotal results 27 / 71 (38.03%) 72.229.97.23580Heodo
2020-12-19 07:42:50b264b285615cef3025762f2e6c1fcef1n/a72.229.97.23580Heodo
2020-12-19 02:02:499cd8cf77afec61905299283b289ae6fcn/a72.229.97.23580Heodo
2020-12-18 15:39:57d5d7d7cb0b6e6ad9838abd71c96bf471n/a72.229.97.23580Heodo

# of malware samples: 21