Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 153.122.38.158. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:153.122.38.158
Hostname:daphnia.org
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS131921
AS name:GMOCL GMO CLOUD K.K.
Country:- JP
First seen:2018-09-10 08:11:12 UTC
Last seen:2019-01-08 09:35:12 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 05:36:096a8b2fa4499c0449d8171e2fba3fdc27Virustotal results 49/66 (74.24%) 153.122.38.158443Heodo
2019-01-09 05:32:1660248f127e1080d29817cf0e34846d80Virustotal results 47/69 (68.12%) 153.122.38.158443Heodo
2019-01-09 02:36:0071b61dd94b5b76355781c4b9c8cdffe5Virustotal results 35/68 (51.47%) 153.122.38.158443Heodo
2019-01-08 21:21:37cfef30c5c3ac4c16408f8f2ec0dc8daeVirustotal results 12/68 (17.65%) 153.122.38.158443Heodo
2019-01-08 21:01:535663f685d693273678c20095a58e6a9fVirustotal results 40/68 (58.82%) 153.122.38.158443Heodo
2019-01-08 18:02:4105f33042eeb5c63604c856608e7282b2Virustotal results 45/69 (65.22%) 153.122.38.158443Heodo
2019-01-08 17:54:486274efa57ce9dc0df61589b2694e8f44Virustotal results 46/69 (66.67%) 153.122.38.158443Heodo
2019-01-08 14:59:00974922c6081c99bab6f615985295722dVirustotal results 34/68 (50.00%) 153.122.38.158443Heodo
2019-01-08 14:11:20471e2f41ee7c2fe3abd7aaae2b10a308Virustotal results 47/69 (68.12%) 153.122.38.158443Heodo
2019-01-08 13:32:422e169824f7ff449aa496f5883a8a0c7bVirustotal results 38/68 (55.88%) 153.122.38.158443Heodo
2019-01-08 13:22:275bd5e32e11bdbb4a64b001fa5f0cd0efVirustotal results 47/68 (69.12%) 153.122.38.158443Heodo
2019-01-08 12:41:1270fe33f7311fd584dbf25c4bb51ed4caVirustotal results 52/68 (76.47%) 153.122.38.158443Heodo
2019-01-08 12:25:39fc819f0f28559a35541eb5bfacfeaa46Virustotal results 35/69 (50.72%) 153.122.38.158443Heodo
2019-01-08 12:20:5006673abb3088baf394ba5b938c3ddb9cVirustotal results 46/69 (66.67%) 153.122.38.158443Heodo
2019-01-08 11:24:205490b40342e869fb0b621a9c4b2e0a11Virustotal results 56/70 (80.00%) 153.122.38.158443Heodo
2019-01-08 10:38:27c9c54ca706f013abb3472a6ba84b8cb3Virustotal results 45/69 (65.22%) 153.122.38.158443Heodo
2019-01-08 07:59:5422802374e06e132ee9ae7fd99a15a308Virustotal results 48/67 (71.64%) 153.122.38.158443Heodo
2019-01-08 07:59:22a84688cf8dadbccc3a4608ecbdbe00f8Virustotal results 40/67 (59.70%) 153.122.38.158443Heodo
2019-01-08 07:56:414e9411567b9d296bac5687eafb60a871Virustotal results 33/68 (48.53%) 153.122.38.158443Heodo
2019-01-08 07:40:1203f30e9c3014c63b46eb077c8349b435Virustotal results 47/68 (69.12%) 153.122.38.158443Heodo
2018-11-22 02:14:33e78f1d5e7106f8f7823946063e30ff23Virustotal results 39/68 (57.35%) 153.122.38.158443Heodo
2018-11-18 18:44:02c46f3d4a5f4666d2c2295805df686b43Virustotal results 30/67 (44.78%) 153.122.38.158443Heodo
2018-11-18 02:57:328acde16cbf0ca192e4ab1431a8ac27f9Virustotal results 42/69 (60.87%) 153.122.38.158443Heodo
2018-11-13 09:06:359baa9417b95e662b1e0fd9ceb611d351Virustotal results 14/58 (24.14%) 153.122.38.158443Heodo
2018-11-05 13:06:19f6798e6c0e49c66d080dce61f66c3afcVirustotal results 34/68 (50.00%) 153.122.38.158443Heodo
2018-11-05 13:06:19f6798e6c0e49c66d080dce61f66c3afcVirustotal results 34/68 (50.00%) 153.122.38.158443Heodo
2018-11-05 12:38:44d21343cc6de08f40791341b1d7ae56c6Virustotal results 37/67 (55.22%) 153.122.38.158443Heodo
2018-10-31 05:21:10665fc2ea41e8f18e3740255487b10aacVirustotal results 40/67 (59.70%) 153.122.38.158443Heodo
2018-10-17 05:45:372a024c00298ad2fe602fc28395f6aa79Virustotal results 41/68 (60.29%) 153.122.38.158443Heodo
2018-10-09 14:05:277fd6bff1f2a4deae290f801e084af3ceVirustotal results 43/61 (70.49%) 153.122.38.158443Heodo

# of malware samples: 30