Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 75.149.91.249. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:75.149.91.249
Hostname:75-149-91-249-Illinois.hfc.comcastbusiness.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7922
AS name:COMCAST-7922 - Comcast Cable Communications, LLC
Country:- US
First seen:2019-03-04 20:13:25 UTC
Last seen:2019-03-08 02:45:14 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-03-08 14:46:01d89bbcc3c832689eb43cc42ea218f3d6Virustotal results 42/65 (64.62%) 75.149.91.2498080Heodo
2019-03-06 00:17:350d8bbf243b3cfac8a174726b0c125f70Virustotal results 12/71 (16.90%) 75.149.91.2498080Heodo
2019-03-05 09:55:26a43553ccb4714cf5c0c23cfa2e4bc2a7Virustotal results 46/71 (64.79%) 75.149.91.2498080Heodo
2019-03-05 02:54:35d14d27175f173fefd1406dabc2918ae2Virustotal results 39/67 (58.21%) 75.149.91.2498080Heodo
2019-03-04 20:54:298fbd993c5b326f250a8cdfbbb7d5372fVirustotal results 14/65 (21.54%) 75.149.91.2498080Heodo
2019-03-04 20:22:1480fd8304c1ec7eb53973d541c2655279Virustotal results 14/63 (22.22%) 75.149.91.2498080Heodo

# of malware samples: 6