Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 129.89.95.199. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:129.89.95.199
Hostname:gml-hw1mgk2.ad.uwm.edu
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS7050
AS name:UW-MILWAUKEE-AS1 - University of Wisconsin - Milwaukee, US
Country:- US
First seen:2018-07-20 21:18:22 UTC
Last seen:2018-07-25 14:34:43 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-08-02 21:31:214141f38fb6add76e73068b832db0b712Virustotal results 47/67 (70.15%) 129.89.95.19980Heodo
2018-07-28 05:22:01a8752a8f28722e3e27dd7dc232364ec5Virustotal results 24/68 (35.29%) 129.89.95.19980Heodo
2018-07-25 14:34:43187b6a0c646d2c56e19ea3ea12a3a87dVirustotal results 24/67 (35.82%) 129.89.95.19980Heodo
2018-07-24 09:26:1099cc8d73060a5999ef588708aef2f21aVirustotal results 44/68 (64.71%) 129.89.95.19980Heodo
2018-07-24 02:14:50bc871432a0b144e05063eb443370460fVirustotal results 38/66 (57.58%) 129.89.95.19980Heodo
2018-07-23 22:21:36ceb4e09a562aaee1dfec030e6c8f3ab2Virustotal results 40/69 (57.97%) 129.89.95.19980Heodo
2018-07-23 14:15:090ea0e67f0365f36fceddb84f51574e6bVirustotal results 22/67 (32.84%) 129.89.95.19980Heodo
2018-07-23 12:06:043224f8df1a83a51fb86cc5c4ecafdfc4Virustotal results 14/68 (20.59%) 129.89.95.19980Heodo
2018-07-23 10:29:26b57c63cde04e171790983e62345f3e70Virustotal results 40/68 (58.82%) 129.89.95.19980Heodo
2018-07-23 06:23:15a2c3ac3ef01a40b320b3bb10866eed03Virustotal results 38/68 (55.88%) 129.89.95.19980Heodo
2018-07-23 04:29:44162aded1b3f2e6880d1df399ba751944Virustotal results 39/67 (58.21%) 129.89.95.19980Heodo
2018-07-22 18:06:090ac5dbf5d347cdc5ee5006cebebc9b18Virustotal results 14/68 (20.59%) 129.89.95.19980Heodo
2018-07-22 18:00:24a288a90c548e7b5fd7af9644cfec77caVirustotal results 13/68 (19.12%) 129.89.95.19980Heodo
2018-07-22 17:51:27d7c6006ab321023ebf2216dfedfff1d6Virustotal results 25/68 (36.76%) 129.89.95.19980Heodo
2018-07-22 16:28:296b861100ca0bd0e07d5f30ea91efe5daVirustotal results 33/67 (49.25%) 129.89.95.19980Heodo
2018-07-22 12:43:09398d11d11bdca7c91f8c39b018dd5025Virustotal results 39/68 (57.35%) 129.89.95.19980Heodo
2018-07-22 11:36:291d75c16a99fa03e7a32147ede30a9ec8Virustotal results 40/65 (61.54%) 129.89.95.19980Heodo
2018-07-22 07:59:13741454c985471b29258972880b00f604Virustotal results 12/68 (17.65%) 129.89.95.19980Heodo
2018-07-22 07:51:43b502412f7ed401cdd3780674a5996f50Virustotal results 13/66 (19.70%) 129.89.95.19980Heodo
2018-07-22 06:26:2793674e270daa28ceda667ff8f86b6437Virustotal results 16/68 (23.53%) 129.89.95.19980Heodo
2018-07-22 06:25:4629dceb532b893a75134ada87f99d641dVirustotal results 18/67 (26.87%) 129.89.95.19980Heodo
2018-07-22 06:17:20cc6c9f178dbaa506d3c6e4b225877a88Virustotal results 16/67 (23.88%) 129.89.95.19980Heodo
2018-07-22 06:12:079dfbcbe5596ab4842edb43af753689dbVirustotal results 26/68 (38.24%) 129.89.95.19980Heodo
2018-07-22 06:10:17eb4e431601acb840bce9aeffa7573a02Virustotal results 13/67 (19.40%) 129.89.95.19980Heodo
2018-07-22 06:06:51777e93e4626d751689906d0b7e5de857Virustotal results 23/67 (34.33%) 129.89.95.19980Heodo
2018-07-22 06:02:30361075d54ba25919f424a0930aff76d0Virustotal results 15/68 (22.06%) 129.89.95.19980Heodo
2018-07-22 05:51:0789aa3b6c7891252b807b64e214d31fb3Virustotal results 16/66 (24.24%) 129.89.95.19980Heodo
2018-07-22 05:43:40af3f18382985d0497d6b37d5e901518aVirustotal results 17/66 (25.76%) 129.89.95.19980Heodo
2018-07-22 05:42:41ee116cc56c5e588ae9f5b9cbc0178245Virustotal results 13/67 (19.40%) 129.89.95.19980Heodo
2018-07-22 05:40:338d16d1e79bb1c588a4e4e36e5517e754Virustotal results 13/67 (19.40%) 129.89.95.19980Heodo
2018-07-21 23:26:07f1817d7b9ed6d4b41dc3b4c5e84c2792Virustotal results 36/67 (53.73%) 129.89.95.19980Heodo
2018-07-21 19:12:112dc08611b84528f41e40c7e4f7661e6cVirustotal results 14/67 (20.90%) 129.89.95.19980Heodo
2018-07-21 19:03:27b9ebda873738c0085d326db3fb580585Virustotal results 15/67 (22.39%) 129.89.95.19980Heodo
2018-07-21 19:02:49a8a8dfb2cae6def73dd37b0ebc47ef29Virustotal results 13/68 (19.12%) 129.89.95.19980Heodo
2018-07-21 14:51:4425c01c49de3b309c0f4f666c92c70d25Virustotal results 19/68 (27.94%) 129.89.95.19980Heodo
2018-07-21 14:44:23044493a1073ccc4abb914da33df3885cVirustotal results 19/67 (28.36%) 129.89.95.19980Heodo
2018-07-21 08:50:102e0e5caa24f880c79078e10210996145Virustotal results 21/65 (32.31%) 129.89.95.19980Heodo
2018-07-21 07:53:05bd4d2bfb828e86de5d1c58a799a180d7Virustotal results 39/67 (58.21%) 129.89.95.19980Heodo
2018-07-21 07:14:3600cf1a7c2129d185f7710652f4ac0bd9Virustotal results 37/63 (58.73%) 129.89.95.19980Heodo
2018-07-21 07:14:05fecb5660c8fac0855b47839b5f0ae179Virustotal results 18/67 (26.87%) 129.89.95.19980Heodo
2018-07-21 06:12:09d8011598f59607a69bf987a232ef5a71Virustotal results 31/67 (46.27%) 129.89.95.19980Heodo
2018-07-20 08:49:57a0fae642b17edd147e3e502e659630c5Virustotal results 26/68 (38.24%) 129.89.95.19980Heodo
2018-07-20 08:38:2259ac34774571d0544402dd22233b820cVirustotal results 17/68 (25.00%) 129.89.95.19980Heodo
2018-07-20 08:37:15f5ff223172ed62f87adacce09a3ee517Virustotal results 34/68 (50.00%) 129.89.95.19980Heodo
2018-07-20 08:28:5600e6214f195189ce2b820ed559c6aac7Virustotal results 25/68 (36.76%) 129.89.95.19980Heodo
2018-07-20 08:11:227c2d41522f379278c1c5378ed4e2ac9aVirustotal results 24/65 (36.92%) 129.89.95.19980Heodo

# of malware samples: 46