Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 91.236.245.65. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:91.236.245.65
Hostname:91.236.245.65.static.ipworks.be
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS57948
AS name:COBALT IPWorks
Country:- BE
First seen:2018-12-06 15:01:59 UTC
Last seen:2019-01-08 09:29:03 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 01:33:49163a0117f50584a434852e1e8da9af34Virustotal results 51/70 (72.86%) 91.236.245.658080Heodo
2019-01-09 00:40:19ea16eb7fc3a0e154a76863f9706bb2aeVirustotal results 11/70 (15.71%) 91.236.245.658080Heodo
2019-01-09 00:37:50b7eb9ca11ce212beff0653b2d5d8d107Virustotal results 45/69 (65.22%) 91.236.245.658080Heodo
2019-01-08 16:54:0227a72df1a49d72483517720b385769c0Virustotal results 45/69 (65.22%) 91.236.245.658080Heodo
2019-01-08 16:24:52aa9cf76b2c3a735b7c223cbd30c29603Virustotal results 43/70 (61.43%) 91.236.245.658080Heodo
2019-01-08 14:31:16e4e381fcea52ae03d81ed08639b59863Virustotal results 46/68 (67.65%) 91.236.245.658080Heodo
2019-01-08 12:53:24e1aa639469f729a18e76b8751c3ed556Virustotal results 47/69 (68.12%) 91.236.245.658080Heodo
2018-12-26 02:25:264c6729e65cdf79dddf03b42a5a149731Virustotal results 36/59 (61.02%) 91.236.245.658080Heodo
2018-12-26 01:41:30aead90ccfdc2929072274510813ebe9eVirustotal results 10/60 (16.67%) 91.236.245.658080Heodo
2018-12-26 00:29:262c1b625f9f99ea7f8c15747f983f88ceVirustotal results 10/59 (16.95%) 91.236.245.658080Heodo
2018-12-26 00:13:1457e87dae6ad7728b7bfea3a105574d18Virustotal results 10/59 (16.95%) 91.236.245.658080Heodo
2018-12-25 22:28:562ddec7b875ee2f50248eea4b55a18172Virustotal results 11/59 (18.64%) 91.236.245.658080Heodo
2018-12-25 22:28:336b896a2b501c1931a84614360cd60a6aVirustotal results 11/58 (18.97%) 91.236.245.658080Heodo
2018-12-25 21:34:067c26bd04b27a003254ceb2f5b67616efVirustotal results 38/58 (65.52%) 91.236.245.658080Heodo
2018-12-25 21:01:52675ba37d08b478bfe969bec7de67661dVirustotal results 11/59 (18.64%) 91.236.245.658080Heodo
2018-12-25 18:40:116ee55cdc98c7a2ecc520a497aeeb8b3dVirustotal results 11/59 (18.64%) 91.236.245.658080Heodo
2018-12-25 17:11:49223eb03ce37ae9ed11560d7747beef6dVirustotal results 37/60 (61.67%) 91.236.245.658080Heodo
2018-12-25 17:00:585859b137e06d73df4210c20f2a9f9063Virustotal results 11/59 (18.64%) 91.236.245.658080Heodo
2018-12-25 16:41:04a3cdac3c862c92d75555c58c14e9f0efVirustotal results 38/60 (63.33%) 91.236.245.658080Heodo
2018-12-23 11:37:55a41b90d13b7478e4bcd005ab76977db7Virustotal results 24/70 (34.29%) 91.236.245.658080Heodo
2018-12-21 08:43:28a849c60eb2e9eddbc540fe0bd17a8545Virustotal results 36/59 (61.02%) 91.236.245.658080Heodo
2018-12-21 08:33:5431810b3299a44e26e683f797c1c10159Virustotal results 15/59 (25.42%) 91.236.245.658080Heodo
2018-12-21 08:16:513846ddf0a4042262f82b83212eb2ae70Virustotal results 37/59 (62.71%) 91.236.245.658080Heodo
2018-12-21 08:08:54289130b6c3098ea52bfa2f26db8f5e7fVirustotal results 13/60 (21.67%) 91.236.245.658080Heodo
2018-12-21 07:32:1212c6bc9572e755417b13dd520ad48160Virustotal results 14/58 (24.14%) 91.236.245.658080Heodo
2018-12-21 07:24:09f9fcb23a461c14adb0d2eb08913b212cVirustotal results 37/60 (61.67%) 91.236.245.658080Heodo
2018-12-21 07:09:568f83acdf33c5a7e7356a90ad8bd91482Virustotal results 37/59 (62.71%) 91.236.245.658080Heodo
2018-12-21 07:09:3189441a581462de041bb75be2d5825698Virustotal results 36/60 (60.00%) 91.236.245.658080Heodo
2018-12-21 07:01:4179a0bfeb0ded0cf8fdb906e7a9b94b16Virustotal results 37/60 (61.67%) 91.236.245.658080Heodo
2018-12-21 06:42:3833dbff0792c4d4ed4e930b1780fef34dVirustotal results 15/59 (25.42%) 91.236.245.658080Heodo
2018-12-20 13:41:435810cb4fee212c13f3300a6ae54e791dVirustotal results 11/68 (16.18%) 91.236.245.658080Heodo
2018-12-20 13:36:14d6628117ccaf01d1dfc6660c22fd7ab7Virustotal results 38/58 (65.52%) 91.236.245.658080Heodo
2018-12-20 13:26:5643e381d3f1b98f598760ed5ed5e6b6acVirustotal results 15/60 (25.00%) 91.236.245.658080Heodo
2018-12-20 10:12:57494a2230c7aafef7b33e8d052be90ea5Virustotal results 16/58 (27.59%) 91.236.245.658080Heodo
2018-12-20 09:53:24812e3fddcbb9a328c2455d60256abd23Virustotal results 16/59 (27.12%) 91.236.245.658080Heodo
2018-12-20 09:50:17c3a82ffd84f4ad7c3c282f05f84a0b8fn/a91.236.245.658080Heodo
2018-12-20 08:53:18c4bcbf70c501ee803305d0a3899d5c69Virustotal results 36/69 (52.17%) 91.236.245.658080Heodo
2018-12-20 08:28:16bd7f57c0f3c5b1a2f6245a7d36b27e5cVirustotal results 16/59 (27.12%) 91.236.245.658080Heodo
2018-12-20 08:26:34ec6f011ce06e9440acb464c9382a5d9dVirustotal results 16/61 (26.23%) 91.236.245.658080Heodo
2018-12-19 17:32:35d08bd50c8c1cd6145f36bc3fdfe26fd5Virustotal results 15/69 (21.74%) 91.236.245.658080Heodo
2018-12-17 14:06:16c29687fb18a434af9bb87bcbe405e328Virustotal results 46/70 (65.71%) 91.236.245.658080Heodo
2018-12-13 19:18:04a402190899fe8a007861ca7e683316b3Virustotal results 29/60 (48.33%) 91.236.245.658080Heodo
2018-12-13 19:14:577e0be8d29af52451ec819400d8a8861aVirustotal results 26/70 (37.14%) 91.236.245.658080Heodo
2018-12-13 18:13:558b16e7c3f1084839b862daf72b7d3903Virustotal results 15/68 (22.06%) 91.236.245.658080Heodo
2018-12-13 17:23:040271e5d2b140a3d9bb6c8d9f2bfe542dVirustotal results 17/59 (28.81%) 91.236.245.658080Heodo
2018-12-13 14:10:49fa867b3842dca89ce13e1b6bb7a0e88aVirustotal results 14/57 (24.56%) 91.236.245.658080Heodo
2018-12-12 17:19:2234b8e96388f0c38d6350b9e5b36868e4Virustotal results 10/70 (14.29%) 91.236.245.658080Heodo
2018-12-12 16:10:37c4251366e1661eeee0ee494494bd4e53Virustotal results 14/60 (23.33%) 91.236.245.658080Heodo
2018-12-12 16:00:451029334168f9f1a049ac1682c1a60643Virustotal results 12/69 (17.39%) 91.236.245.658080Heodo
2018-12-12 13:20:01d9fe17478aad27ade8f0acdcd4a25f8bVirustotal results 28/59 (47.46%) 91.236.245.658080Heodo
2018-12-12 10:23:371f88db266ab9d54fba291a80924ca5c7Virustotal results 14/59 (23.73%) 91.236.245.658080Heodo
2018-12-12 05:36:21d0b7da581672e9c8190074f0b621ae45Virustotal results 16/58 (27.59%) 91.236.245.658080Heodo
2018-12-11 21:33:30e8a4999ef42935e3f1ec0530b062fef7Virustotal results 15/60 (25.00%) 91.236.245.658080Heodo
2018-12-07 10:27:514d47b9b825c6c07f1b5efe03618d89d3Virustotal results 48/70 (68.57%) 91.236.245.658080Heodo
2018-12-07 07:36:5528a96563f2f7ac5839a1103823a6f926Virustotal results 16/70 (22.86%) 91.236.245.658080Heodo
2018-12-07 03:27:053acf392aa90549b4dbfcc6daa3cc93c6Virustotal results 20/69 (28.99%) 91.236.245.658080Heodo
2018-12-07 01:52:38f8db7b605a60fb1d4d228d9f45eac791Virustotal results 18/70 (25.71%) 91.236.245.658080Heodo

# of malware samples: 57