Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 198.61.207.174. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:198.61.207.174
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS33070
AS name:RMH-14 - Rackspace Hosting
Country:- US
First seen:2018-01-19 00:42:38 UTC
Last seen:2019-04-20 13:34:37 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-04-22 16:14:38b097b50c991c19911ca4bbbc059d043cVirustotal results 45/68 (66.18%) 198.61.207.174443Heodo
2019-04-22 10:06:35579496f34d5db7b03b038a0034cc41b7Virustotal results 43/67 (64.18%) 198.61.207.174443Heodo
2019-04-22 07:20:16ecf82c462c85c11efab7556a43026cdaVirustotal results 52/67 (77.61%) 198.61.207.174443Heodo
2019-04-22 02:54:517d4a8563490f80ba39da2ae81fc5d6bbVirustotal results 45/68 (66.18%) 198.61.207.174443Heodo
2019-04-21 13:50:1076896dc2c921d2a6bc139d2ef7c79488Virustotal results 49/64 (76.56%) 198.61.207.174443Heodo
2019-04-21 09:44:38caae96dc3ae0f61b977ff786cbcbbcb5Virustotal results 45/68 (66.18%) 198.61.207.174443Heodo
2018-11-16 14:21:37170f4ef1d3d41ecaa4d45fdfbb233eabVirustotal results 49/67 (73.13%) 198.61.207.174443Heodo
2018-10-20 19:49:390ddf8ca5e7d4181b4268d74ffbdef64aVirustotal results 46/68 (67.65%) 198.61.207.174443Heodo

# of malware samples: 8