Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 54.227.38.29. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:54.227.38.29
Hostname:ec2-54-227-38-29.compute-1.amazonaws.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS14618
AS name:AMAZON-AES - Amazon.com, Inc.
Country:- US
First seen:2018-02-21 14:15:46 UTC
Last seen:2019-01-08 08:02:14 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 23:02:1957b962f49b3298a8fc15210d3c50743fVirustotal results 52/68 (76.47%) 54.227.38.2980
2019-01-08 12:31:00f8fc247d2e1b9c4d6b4ff511ffc07078Virustotal results 49/68 (72.06%) 54.227.38.2980Heodo
2018-12-15 12:18:190b7906be06fbfee4ee409f591f59d3a3Virustotal results 50/69 (72.46%) 54.227.38.2980Heodo
2018-11-09 17:52:30144152d40338e93ff3c6cdff1a23cfffVirustotal results 40/68 (58.82%) 54.227.38.2980

# of malware samples: 4