Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 199.38.204.218. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:199.38.204.218
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS13638
AS name:METALINK - Metalink Technologies, Inc., US
Country:- US
First seen:2018-08-30 07:08:13 UTC
Last seen:2018-09-02 20:46:10 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 17:15:06d214f50d67235235794193fc7ad6c6edVirustotal results 47/68 (69.12%) 199.38.204.21880Heodo
2018-09-07 04:19:352f6ffe4c5443ef05251319fa590c104bVirustotal results 43/69 (62.32%) 199.38.204.21880Heodo
2018-09-02 10:37:434747a10c9858df8e68a7657818441333Virustotal results 43/68 (63.24%) 199.38.204.21880Heodo
2018-08-31 11:01:3222f92f1a50e1d5cd3ed369d119072031Virustotal results 18/68 (26.47%) 199.38.204.21880Heodo
2018-08-31 10:53:39de14a3c0038f91edb45f313bf22e1138Virustotal results 15/67 (22.39%) 199.38.204.21880Heodo
2018-08-31 10:04:20ae555d3a451420e611e4e79d4a205161Virustotal results 18/67 (26.87%) 199.38.204.21880Heodo
2018-08-31 06:19:54a29363636cd2da29bb5701578f1c99bcVirustotal results 18/67 (26.87%) 199.38.204.21880Heodo
2018-08-31 06:08:575015f6608e968c03eb3b51d3c2cd225cVirustotal results 22/68 (32.35%) 199.38.204.21880Heodo
2018-08-31 06:04:06b5bda46e3f9832d656edd1216f56b04dVirustotal results 18/67 (26.87%) 199.38.204.21880Heodo
2018-08-31 05:20:06e01cab3d092c9a40fa400fe6a2ac8d31Virustotal results 19/67 (28.36%) 199.38.204.21880Heodo
2018-08-31 00:02:132ad313a81bbd7848c3c14a2248d7f6bcVirustotal results 13/66 (19.70%) 199.38.204.21880Heodo
2018-08-30 23:30:47b7297f55e3ef0015d8d920541f9cebabVirustotal results 25/68 (36.76%) 199.38.204.21880Heodo
2018-08-30 17:30:44149c86d24676a441d8545832733ea5a8Virustotal results 11/67 (16.42%) 199.38.204.21880Heodo
2018-08-30 16:25:46a2c0f9eb695c37acd50b6da0dd5ce642Virustotal results 17/69 (24.64%) 199.38.204.21880Heodo
2018-08-30 11:51:2908fdf83f3dba4fc515f532cd4b2cc4c9Virustotal results 16/68 (23.53%) 199.38.204.21880Heodo
2018-08-30 11:48:3771710dd575ab483f112c0d6ce531d7fbVirustotal results 21/68 (30.88%) 199.38.204.21880Heodo
2018-08-30 09:36:0954ed02b161c49720c2409382caa8b873Virustotal results 14/68 (20.59%) 199.38.204.21880Heodo

# of malware samples: 17