Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 72.27.212.209. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:72.27.212.209
Hostname:209-212-27-72-br2-STATIC-dsl.cwjamaica.com
Status:Offline
Spamhaus SBL:SBL471156
Malware:Heodo -
AS number:AS30689
AS name:FLOW-NET
Country:- JM
First seen:2019-11-28 10:20:28 UTC
Last seen:2020-04-30 07:36:29 UTC
Last online:2020-02-05

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-04-30 07:47:176313446572b3d7b7ddb9524c73c496beVirustotal results 56 / 72 (77.78%) 72.27.212.2098080Heodo
2020-02-14 03:28:48e1174f9afa461fa22d4969f983f95385Virustotal results 9 / 71 (12.68%) 72.27.212.2098080Heodo
2020-02-06 21:24:05b0f1a7610fa8bfce13a49b519407073cVirustotal results 9 / 72 (12.50%) 72.27.212.2098080Heodo
2020-02-05 14:37:107cc8c7eff240f9d00e2dbd6df9acefa3Virustotal results 26 / 72 (36.11%) 72.27.212.2098080Heodo
2020-02-04 22:16:52cedc2bd1253bd1f8f129ab14849d8cd9Virustotal results 8 / 69 (11.59%) 72.27.212.2098080Heodo
2020-02-04 20:42:318306d4d147233fd52fd89a2feff8aed8n/a72.27.212.2098080Heodo
2020-02-04 19:46:2567423f3cbfab1310842c22a65112c6bcVirustotal results 8 / 72 (11.11%) 72.27.212.2098080Heodo
2020-02-04 18:53:33969e2b013bddd88ad87ca2e6d92e99aen/a72.27.212.2098080Heodo
2020-02-04 18:11:2990c17a67bf1cd449a1a02b8313e0baedn/a72.27.212.2098080Heodo
2020-02-04 17:34:03db4bfffdaf21e71a30db50cadf160636Virustotal results 7 / 71 (9.86%) 72.27.212.2098080Heodo
2020-02-04 17:34:02e4318e6d1d233bf6cbbb5615d960c0adVirustotal results 9 / 72 (12.50%) 72.27.212.2098080Heodo
2020-02-04 17:21:3753de5ed78b56d84f4bf358609aca1466n/a72.27.212.2098080Heodo
2020-02-04 17:01:4042e074add216d44af48f063754879d32n/a72.27.212.2098080Heodo
2020-02-04 16:58:022044b2ef9198ea0b597fa061aa70f78fVirustotal results 10 / 71 (14.08%) 72.27.212.2098080Heodo
2020-02-04 16:51:50a34cd7ee2a8425ad86974fb4f6a4cb68n/a72.27.212.2098080Heodo
2020-02-04 16:15:59c90eecdd69b5b76fba34509f061cd7e4n/a72.27.212.2098080Heodo
2020-02-04 16:13:3291aec493f88484b9410c086f8eb90e7fVirustotal results 10 / 72 (13.89%) 72.27.212.2098080Heodo
2020-02-04 16:11:49845068d4aa276446d6ed2dc9c5173918Virustotal results 8 / 72 (11.11%) 72.27.212.2098080Heodo
2020-02-04 16:03:57dbf123fef97ca4bfc46a87638b422e39n/a72.27.212.2098080Heodo
2020-02-04 16:03:29ce1e4e5843538371b71b0328c81ec3c7n/a72.27.212.2098080Heodo
2020-02-04 15:59:33cd34d9a5e647b39a763360b4a82d27b5n/a72.27.212.2098080Heodo
2020-02-04 15:39:311475ae510613c0271d8dc1214e833919Virustotal results 24 / 63 (38.10%) 72.27.212.2098080Heodo
2020-02-04 15:21:4913c80d060e0999d91b677aa9e61f60f1Virustotal results 10 / 72 (13.89%) 72.27.212.2098080Heodo
2020-02-04 14:43:5153651796e01045ac69b11a52d6eddd00n/a72.27.212.2098080Heodo
2020-01-27 18:02:57ab5894563a8d2c51b1b0607667738119Virustotal results 58 / 70 (82.86%) 72.27.212.2098080Heodo
2020-01-14 12:51:27565d3c5418304db9b310863d5a76d4e1Virustotal results 33 / 72 (45.83%) 72.27.212.2098080Heodo
2020-01-14 12:43:40085d40e0638b2bbeed22e1dda29789e9Virustotal results 42 / 73 (57.53%) 72.27.212.2098080Heodo
2020-01-14 11:18:11c242aec0a9af4296d81550800e3f733eVirustotal results 37 / 72 (51.39%) 72.27.212.2098080Heodo
2020-01-14 10:56:23effcf350e357c01f129994eca08fc91bVirustotal results 38 / 72 (52.78%) 72.27.212.2098080Heodo
2019-11-30 02:18:1896fa941bf1b1ac70c579029044e0ad98Virustotal results 9 / 69 (13.04%) 72.27.212.2098080Heodo

# of malware samples: 30