Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 96.64.59.185. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:96.64.59.185
Hostname:96-64-59-185-static.hfc.comcastbusiness.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7922
AS name:COMCAST-7922 - Comcast Cable Communications, LLC
Country:- US
First seen:2019-03-02 15:00:53 UTC
Last seen:2019-03-04 14:48:13 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-06-08 09:25:437b317d24070f98d550682b4b4ddbacbcVirustotal results 44/71 (61.97%) 96.64.59.18520Quakbot
2019-05-31 18:58:596939daf09a23178539bd9fbb775ac697Virustotal results 46/70 (65.71%) 96.64.59.18520
2019-05-31 18:58:596939daf09a23178539bd9fbb775ac697Virustotal results 46/70 (65.71%) 96.64.59.18520
2019-05-31 18:58:596939daf09a23178539bd9fbb775ac697Virustotal results 46/70 (65.71%) 96.64.59.18520
2019-05-31 18:58:596939daf09a23178539bd9fbb775ac697Virustotal results 46/70 (65.71%) 96.64.59.18520
2019-05-31 08:55:1213d6263b923a16a3b571efd31eb18776Virustotal results 42/67 (62.69%) 96.64.59.18520Quakbot
2019-05-29 09:25:17e2353875956292c6074eeed7aaf688c1Virustotal results 42/72 (58.33%) 96.64.59.18520Quakbot

# of malware samples: 7