Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 91.231.166.126. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:91.231.166.126
Hostname:91-231-166-126.waveconn.it
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS198090
AS name:ASLIBRA
Country:- IT
First seen:2019-12-03 20:09:36 UTC
Last seen:2019-12-10 02:30:24 UTC
Last online:2019-12-09

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-12-10 08:05:14b306cdb5b9f78ead68edb47fc7334aebVirustotal results 16 / 62 (25.81%) 91.231.166.1268080Heodo
2019-12-09 04:18:30a557e3c3eeed1ccab4beaabaef6b275bVirustotal results 8 / 70 (11.43%) 91.231.166.1268080Heodo
2019-12-08 00:33:45b8eab67d9ff8550cb32e473eaff21a49Virustotal results 19 / 60 (31.67%) 91.231.166.1268080Heodo
2019-12-08 00:05:557061dca085eee3f7c7557c59c7d8ba26Virustotal results 22 / 61 (36.07%) 91.231.166.1268080Heodo
2019-12-07 15:40:58d5385a07358a7473c7802866b4f0d3cdVirustotal results 32 / 72 (44.44%) 91.231.166.1268080Heodo
2019-12-06 15:13:15a0a96bbb99dd5a46cd338b3f5330e5b3Virustotal results 8 / 71 (11.27%) 91.231.166.1268080Heodo
2019-12-04 23:21:31816c63202acf05806b2d167871af834bVirustotal results 7 / 69 (10.14%) 91.231.166.1268080Heodo
2019-12-04 19:33:29493ddf1afad4895e0fb08f27f5dca379Virustotal results 25 / 71 (35.21%) 91.231.166.1268080Heodo
2019-12-04 08:41:20d5162ba542a5c2e3a090a950c416818cVirustotal results 6 / 71 (8.45%) 91.231.166.1268080Heodo

# of malware samples: 9