Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 72.94.37.253. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:72.94.37.253
Hostname:pool-72-94-37-253.phlapa.fios.verizon.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS701
AS name:UUNET - MCI Communications Services, Inc. d/b/a Verizon Business, US
Country:- US
First seen:2018-11-21 14:33:31 UTC
Last seen:never

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 04:51:401062741d9042962de6759cc8c639eebcVirustotal results 54/72 (75.00%) 72.94.37.25380Heodo
2019-01-08 21:09:166edffc3dd23778507145bb00d23df445Virustotal results 53/68 (77.94%) 72.94.37.25380Heodo
2018-11-21 11:37:00af56de6bf25480e4d78bf893602756e9Virustotal results 14/65 (21.54%) 72.94.37.25380Heodo
2018-11-21 08:44:14971655c6ecef80a4bc50a24782574fbfVirustotal results 17/66 (25.76%) 72.94.37.25380Heodo
2018-11-21 06:48:5565a3da4585c795788eedac5d2ddbfd9eVirustotal results 15/68 (22.06%) 72.94.37.25380Heodo

# of malware samples: 5