Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 78.189.165.52. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:78.189.165.52
Hostname:78.189.165.52.static.ttnet.com.tr
Status:- Online
Spamhaus SBL:SBL472382
Malware:Heodo -
AS number:AS9121
AS name:TTNET
Country:- TR
First seen:2019-12-20 07:22:14 UTC
Last seen:2020-01-18 21:57:54 UTC
Last online:2020-01-19

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-01-18 22:49:13a9078585c8e64172c817dd1ce4fde840Virustotal results 17 / 72 (23.61%) 78.189.165.528080Heodo
2020-01-18 11:28:33a7641302081cc1e9c1965925040b2240Virustotal results 18 / 73 (24.66%) 78.189.165.528080Heodo
2020-01-18 11:28:148b0082d1b2e55bc128f7771532b14148Virustotal results 15 / 73 (20.55%) 78.189.165.528080Heodo
2020-01-18 11:26:217c83f3103d1f117e325747c4285cb119Virustotal results 5 / 71 (7.04%) 78.189.165.528080Heodo
2020-01-18 10:23:0709caf869977f286234b3f5759bdb7b97Virustotal results 11 / 71 (15.49%) 78.189.165.528080Heodo
2020-01-18 07:10:129726f813f671e560d74d5f9dce7af3ceVirustotal results 8 / 71 (11.27%) 78.189.165.528080Heodo
2020-01-18 07:02:25c247cfbb6349d2e7361867775206b213n/a78.189.165.528080Heodo
2020-01-18 05:34:49642c102bd4f50759aa1f71b2a6974173n/a78.189.165.528080Heodo
2020-01-18 05:27:39523307d10f3c5ae2fc409657ca2c5e39Virustotal results 9 / 72 (12.50%) 78.189.165.528080Heodo
2020-01-15 16:54:16a1fa94ac1ad088f2fc5e9eb466b6627dVirustotal results 14 / 62 (22.58%) 78.189.165.528080Heodo
2020-01-13 10:18:049acf89bbe7b6ecd4b0667d7502f6d96cVirustotal results 16 / 61 (26.23%) 78.189.165.528080Heodo
2020-01-13 10:13:38836091888c4ed4c21920941a89e98c45Virustotal results 16 / 62 (25.81%) 78.189.165.528080Heodo
2020-01-13 10:06:14eb8fbfff7ecd577a8b5a3d3a8b0866b1Virustotal results 16 / 61 (26.23%) 78.189.165.528080Heodo
2020-01-13 09:34:31ebf0f63a74acde2ece2ec695c74a1123Virustotal results 16 / 61 (26.23%) 78.189.165.528080Heodo
2020-01-13 08:53:48461dee934c5681624d3ca5d323239eb8n/a78.189.165.528080Heodo
2020-01-13 08:48:501d4fd5dab89ae91a8dd6c5c74bbd08d7n/a78.189.165.528080Heodo
2020-01-13 08:44:2028bd6a13ee8797ce0745fd41c0589dfdn/a78.189.165.528080Heodo
2019-12-22 18:57:40a989e0cd9a618820c7bf65692b2d6ef3Virustotal results 10 / 73 (13.70%) 78.189.165.528080Heodo
2019-12-22 11:56:29db169246ac0cac06b1b4165f80e6f756Virustotal results 39 / 73 (53.42%) 78.189.165.528080Heodo
2019-12-22 10:55:548c37ef8cee59e0ec8991255842746083Virustotal results 6 / 71 (8.45%) 78.189.165.528080Heodo
2019-12-22 10:02:491db5dc1f26cbb97acbad697bdbbf7e20Virustotal results 5 / 71 (7.04%) 78.189.165.528080Heodo
2019-12-22 09:49:098dadd21f6354a3f2aee873a497ae4645Virustotal results 4 / 69 (5.80%) 78.189.165.528080Heodo
2019-12-20 21:08:16d8a920cae539a4141ddf76445a4f9b84Virustotal results 18 / 62 (29.03%) 78.189.165.528080Heodo
2019-12-20 20:55:24654bdd4afb7e7969d10f42d63aa2a732Virustotal results 18 / 61 (29.51%) 78.189.165.528080Heodo
2019-12-20 20:28:0411252420fca1bb7b2978685b2d77e09aVirustotal results 7 / 73 (9.59%) 78.189.165.528080Heodo
2019-12-20 20:23:141430055ad92816449b63a981532861bdVirustotal results 5 / 71 (7.04%) 78.189.165.528080Heodo
2019-12-20 19:09:076e719d7c797de0a4e0ef6cbabe010da4Virustotal results 5 / 73 (6.85%) 78.189.165.528080Heodo
2019-12-20 18:22:479ac5b8e44279c8ee8543ff41b51af403Virustotal results 22 / 62 (35.48%) 78.189.165.528080Heodo
2019-12-20 18:14:4645b570735bf49e47598046bbb067f844Virustotal results 19 / 60 (31.67%) 78.189.165.528080Heodo

# of malware samples: 29