Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 81.136.148.196. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:81.136.148.196
Hostname:host81-136-148-196.in-addr.btopenworld.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS2856
AS name:BT-UK-AS BTnet UK Regional network
Country:- GB
First seen:2018-12-13 22:14:35 UTC
Last seen:2018-12-16 05:13:09 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-21 07:05:28d6e63dd7029b348b3554d450d5303a26Virustotal results 38/68 (55.88%) 81.136.148.19650000Heodo
2018-12-14 17:21:1057676c6cc919fcc0fe5a0fc950cd4476Virustotal results 14/60 (23.33%) 81.136.148.19650000Heodo
2018-12-14 15:16:392e2a1f0cdc51c4e1717a27e22f6f5191Virustotal results 18/70 (25.71%) 81.136.148.19650000Heodo
2018-12-13 22:33:4087e39af4cab480c1635035cdbeda0bcfVirustotal results 16/60 (26.67%) 81.136.148.19650000Heodo
2018-12-13 22:33:4087e39af4cab480c1635035cdbeda0bcfVirustotal results 16/60 (26.67%) 81.136.148.19650000Heodo
2018-12-13 22:32:237e06bd8189ba453367dc00fd57146a8dVirustotal results 16/59 (27.12%) 81.136.148.19650000Heodo
2018-12-13 22:30:215a83d8bb7b5c36336b2332afea378fd4Virustotal results 16/59 (27.12%) 81.136.148.19650000Heodo

# of malware samples: 7