Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 197.87.130.229. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:197.87.130.229
Hostname:197-87-130-229.cpt.mweb.co.za
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10474
AS name:OPTINET, ZA
Country:- ZA
First seen:2018-10-04 14:36:53 UTC
Last seen:2018-10-05 08:13:58 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-10-05 08:10:238d7b1b5a7ed23fc69fe2133874fc1b7cVirustotal results 21/67 (31.34%) 197.87.130.2298080Heodo
2018-10-05 08:10:238d7b1b5a7ed23fc69fe2133874fc1b7cVirustotal results 21/67 (31.34%) 197.87.130.2298080Heodo
2018-10-04 21:25:14b523acc5da1636551efdbdbca0cbd213Virustotal results 20/67 (29.85%) 197.87.130.2298080Heodo
2018-10-04 21:25:14b523acc5da1636551efdbdbca0cbd213Virustotal results 20/67 (29.85%) 197.87.130.2298080Heodo
2018-10-04 16:07:440bfc196e11bae5f9d4b37c4723040e08Virustotal results 16/69 (23.19%) 197.87.130.2298080Heodo
2018-10-04 16:07:440bfc196e11bae5f9d4b37c4723040e08Virustotal results 16/69 (23.19%) 197.87.130.2298080Heodo

# of malware samples: 6