Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 197.87.130.229. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:197.87.130.229
Hostname:197-87-130-229.cpt.mweb.co.za
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS10474
AS name:OPTINET
Country:- ZA
First seen:2018-10-04 14:36:53 UTC
Last seen:2019-01-08 07:38:44 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-09 05:32:1660248f127e1080d29817cf0e34846d80Virustotal results 47/69 (68.12%) 197.87.130.2298080Heodo
2019-01-09 05:32:1660248f127e1080d29817cf0e34846d80Virustotal results 47/69 (68.12%) 197.87.130.2298080Heodo
2019-01-08 07:59:5422802374e06e132ee9ae7fd99a15a308Virustotal results 48/67 (71.64%) 197.87.130.2298080Heodo
2019-01-08 07:59:5422802374e06e132ee9ae7fd99a15a308Virustotal results 48/67 (71.64%) 197.87.130.2298080Heodo
2018-11-20 10:36:5898e4982938e175b6053f25ed532e2984Virustotal results 41/58 (70.69%) 197.87.130.2298080Heodo

# of malware samples: 5