Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 24.234.221.236. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:24.234.221.236
Hostname:wsip-24-234-221-236.lv.lv.cox.net
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS22773
AS name:ASN-CXA-ALL-CCI-22773-RDC - Cox Communications Inc.
Country:- US
First seen:2018-11-14 22:07:54 UTC
Last seen:2018-11-15 07:41:14 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-11-15 08:00:152392f8137fa1ee52b18bd0f187233918Virustotal results 27/58 (46.55%) 24.234.221.2367080Heodo
2018-11-14 22:07:5464faa5d86ee6a0c3307304ae652a38feVirustotal results 15/66 (22.73%) 24.234.221.2367080Heodo
2018-11-14 12:18:353a3f0a16060a40b803dc1a34e510e2c2Virustotal results 12/58 (20.69%) 24.234.221.2367080Heodo

# of malware samples: 3