Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 87.252.100.28. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:87.252.100.28
Hostname:28-100-252-87.viacloudtelecom.bh.com
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS35729
AS name:VIACLOUD-AS
Country:- BH
First seen:2020-02-28 04:47:07 UTC
Last seen:2020-03-26 22:44:46 UTC
Last online:2020-03-29

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2020-03-29 05:47:33c9eadea1fb77b6e421b8abe083380d62Virustotal results 48 / 72 (66.67%) 87.252.100.2880Heodo
2020-03-25 11:38:03f9f2f861e164282de2c3c1f4f12933den/a87.252.100.2880Heodo
2020-03-25 11:36:51e0b32b7204bfd5e5b16b62bf6b9c8f1en/a87.252.100.2880Heodo
2020-03-25 11:36:27daac0417c5e3c5668df8078631a7f526n/a87.252.100.2880Heodo
2020-03-25 11:36:06fabddcf3166ff8b11df1e732d5df8122n/a87.252.100.2880Heodo
2020-03-25 11:30:509d13efa49e012f27f05fd3ddc5ec37f4n/a87.252.100.2880Heodo
2020-03-25 11:27:139bb1d4cb67aa5920bb9475ece4612905n/a87.252.100.2880Heodo
2020-03-25 11:26:31adbefbdd900d84e89fdba45d0fbbe770n/a87.252.100.2880Heodo
2020-03-25 11:26:19473f5da6bf46fe5cf559a4f816870362n/a87.252.100.2880Heodo
2020-03-25 11:24:308c6550b0541d7fee0e6423ab4bce5901n/a87.252.100.2880Heodo
2020-03-25 11:22:5229ac5b60850e40368224db7dcbe467e1n/a87.252.100.2880Heodo
2020-03-25 11:16:31134099415951caef9b5506ce63c06b76n/a87.252.100.2880Heodo
2020-03-23 14:59:199eeb9f872a12f1baa0c781affe7895ffVirustotal results 33 / 72 (45.83%) 87.252.100.2880Heodo
2020-03-21 07:47:190de6cd19f60a9594d7d3b94fd871eeb9n/a87.252.100.2880Heodo
2020-03-21 07:30:309f821ea64fcfbea3b06444b899f9639bn/a87.252.100.2880Heodo
2020-02-28 05:00:489a31cb49a9838140c13db603a40ebdbfn/a87.252.100.2880Heodo

# of malware samples: 16