Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 82.117.238.3. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:82.117.238.3
Hostname:n/a
Status:Offline
Spamhaus SBL:SBL426833
Malware:Heodo -
AS number:AS34248
AS name:VELTON-TC-AS Kharkov, Ukraine
Country:- UA
First seen:2018-11-17 11:18:29 UTC
Last seen:2018-11-17 11:18:29 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 11:05:574cf6d047964341ec5b0dab6e859a22b5Virustotal results 47/67 (70.15%) 82.117.238.38080Heodo
2019-01-08 15:11:45e1db91799f716f564cdaf144d34fae5dVirustotal results 45/68 (66.18%) 82.117.238.38080Heodo
2018-11-21 16:48:51955e45cfc9d6c861cd53fd863e3d436fVirustotal results 35/67 (52.24%) 82.117.238.38080Heodo
2018-11-19 23:01:02605d26db9e1947bd09ebd027a1ba4ad9Virustotal results 37/68 (54.41%) 82.117.238.38080Heodo
2018-11-19 20:06:31e024721c31de975a8c16c39d45af570dVirustotal results 34/67 (50.75%) 82.117.238.38080Heodo
2018-11-19 15:39:210307735cebf9b1d1dfb99988c2b45cf3Virustotal results 41/68 (60.29%) 82.117.238.38080Heodo
2018-11-19 01:37:26f57ffe23372b120fb6aa2abbe608285fVirustotal results 43/66 (65.15%) 82.117.238.38080Heodo
2018-11-18 17:43:3711fb2bdc1ba4320156b2a48963b06fb1Virustotal results 42/68 (61.76%) 82.117.238.38080Heodo
2018-11-18 09:26:31d4ad8efc30dae48a10f8d7a3bbc89371Virustotal results 36/66 (54.55%) 82.117.238.38080Heodo
2018-11-18 02:57:328acde16cbf0ca192e4ab1431a8ac27f9Virustotal results 42/69 (60.87%) 82.117.238.38080Heodo
2018-11-18 01:20:21b8ef8ef2125d53f08f3597cf8f49afacVirustotal results 37/68 (54.41%) 82.117.238.38080Heodo
2018-11-17 11:50:132c74734868f35ab332f1073b4a3aebcfVirustotal results 40/68 (58.82%) 82.117.238.38080Heodo
2018-11-17 07:07:29cc8bdf984a1a08febc773b7fb6ae2d6bVirustotal results 43/67 (64.18%) 82.117.238.38080Heodo
2018-11-17 02:10:58bd8dac41180932a23a493c3ca2d67c2dVirustotal results 31/66 (46.97%) 82.117.238.38080Heodo
2018-11-16 11:50:22311b18056acd030c0b535dc9ca702802Virustotal results 38/67 (56.72%) 82.117.238.38080Heodo
2018-11-16 10:38:43df2ab0035aa27375c8ba52db2937e6e4Virustotal results 44/68 (64.71%) 82.117.238.38080Heodo
2018-11-15 18:40:374eec95c050a59029acd93dcf19ae84a9Virustotal results 17/66 (25.76%) 82.117.238.38080Heodo
2018-11-15 10:15:09075a91b9023d6e8710be516c1fc5348aVirustotal results 44/70 (62.86%) 82.117.238.38080Heodo
2018-11-15 06:09:11317d5e759948dbbe979bb6d6e9c2676eVirustotal results 17/65 (26.15%) 82.117.238.38080Heodo
2018-11-15 00:14:43a493be16070c03b7d236ae7e86cce0d9Virustotal results 13/67 (19.40%) 82.117.238.38080Heodo
2018-11-14 22:07:5464faa5d86ee6a0c3307304ae652a38feVirustotal results 15/66 (22.73%) 82.117.238.38080Heodo
2018-11-14 18:30:469962d26ae57c94404f4a21f2048a4c0fVirustotal results 13/66 (19.70%) 82.117.238.38080Heodo
2018-11-14 14:53:4411f20e9364ef5099187b3445629888d3Virustotal results 10/66 (15.15%) 82.117.238.38080AgentTesla
2018-11-14 07:39:098cf2666684c37d5c84af404a6a95ae6fVirustotal results 16/65 (24.62%) 82.117.238.38080Heodo
2018-11-14 03:46:21684ed792f2ae26e0fbfa34ac1cef5f40Virustotal results 8/69 (11.59%) 82.117.238.38080Heodo
2018-11-14 01:17:53c0e353a26d2a8970862d81033083c785Virustotal results 17/67 (25.37%) 82.117.238.38080Heodo
2018-11-13 22:17:436bc11d11b642ad3e6ceb68ce9448401bVirustotal results 20/68 (29.41%) 82.117.238.38080Heodo
2018-11-13 20:35:4621cb99552041a78363cb62502040823fVirustotal results 19/65 (29.23%) 82.117.238.38080Heodo
2018-11-13 18:05:00331b9300cc432410489a702251d97016Virustotal results 29/67 (43.28%) 82.117.238.38080Heodo

# of malware samples: 29