Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 79.31.85.103. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:79.31.85.103
Hostname:host-79-31-85-103.retail.telecomitalia.it
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS3269
AS name:ASN-IBSNAZ
Country:- IT
First seen:2019-12-07 15:14:54 UTC
Last seen:2019-12-21 14:27:02 UTC
Last online:2019-12-16

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-21 14:46:33ef2aec8c5743cad79fb97aa05b653f65Virustotal results 12 / 72 (16.67%) 79.31.85.10380Heodo
2019-12-21 06:21:393b609e75cf34d9b864987e7a9bc9f8c7Virustotal results 11 / 72 (15.28%) 79.31.85.10380Heodo
2019-12-17 18:56:5431ab292cc3cf1271ce058e50de15fdecVirustotal results 13 / 72 (18.06%) 79.31.85.10380Heodo

# of malware samples: 3