Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 84.173.140.231. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:84.173.140.231
Hostname:p54AD8CE7.dip0.t-ipconnect.de
Status:Offline
Spamhaus SBL:SBL427514
Malware:Heodo -
AS number:AS3320
AS name:DTAG Internet service provider operations
Country:- DE
First seen:2018-12-21 06:47:01 UTC
Last seen:2018-12-23 04:02:29 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-12-23 10:58:42622bdf418b1ad9905224c24fb54a57bcVirustotal results 10/70 (14.29%) 84.173.140.231443Heodo
2018-12-23 10:48:47536cd0368e135b825b9e251b68950f9dVirustotal results 12/71 (16.90%) 84.173.140.231443Heodo
2018-12-23 01:59:066876afa341bef064704f03cb436b2788Virustotal results 13/69 (18.84%) 84.173.140.231443Heodo

# of malware samples: 3