Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 89.106.251.163. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:89.106.251.163
Hostname:163.251-106-89.FTTH.rus-com.net
Status:- Online
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS5563
AS name:URAL Ural Regional Net
Country:- RU
First seen:2021-01-04 16:41:04 UTC
Last seen:2021-01-23 20:56:59 UTC
Last online:2021-01-24

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2021-01-24 00:44:369b4b873b7aec4d31e3a05310adad307cVirustotal results 42 / 70 (60.00%) 89.106.251.16380Heodo
2021-01-17 15:15:36c0792a6e1bc76254c5383827b5b43a4fVirustotal results 40 / 69 (57.97%) 89.106.251.16380Heodo

# of malware samples: 2