Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 51.38.45.245. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:51.38.45.245
Hostname:ip-51-38-45.eu
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS16276
AS name:OVH
Country:- FR
First seen:2018-11-07 12:24:22 UTC
Last seen:2018-11-13 16:02:53 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-11-13 17:02:366b03e7ed93f634d59d2404582f430fa3Virustotal results 19/59 (32.20%) 51.38.45.24580Heodo
2018-11-13 17:02:224652719a1fc7795973a1008b3f36690cVirustotal results 19/59 (32.20%) 51.38.45.24580Heodo
2018-11-08 08:22:381fdc425252243532f7ac467426fea84dVirustotal results 15/66 (22.73%) 51.38.45.24580Heodo
2018-11-07 13:16:19d90719fee0e998cd5ef251e08147d629Virustotal results 13/67 (19.40%) 51.38.45.24580TrickBot
2018-11-07 12:24:22219caadcf73f79ca789422b8825f932cVirustotal results 11/59 (18.64%) 51.38.45.24580Heodo

# of malware samples: 5