Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 69.8.25.109. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:69.8.25.109
Hostname:n/a
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS8025
AS name:BRIGHTOK-AS - BrightNet Oklahoma
Country:- US
First seen:2018-11-07 12:24:22 UTC
Last seen:2018-11-13 08:54:02 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-11-13 09:06:359baa9417b95e662b1e0fd9ceb611d351Virustotal results 14/58 (24.14%) 69.8.25.109443Heodo
2018-11-07 21:49:05237ece76f71c70fc002475ffc8ec2a26Virustotal results 14/59 (23.73%) 69.8.25.109443Heodo
2018-11-07 21:44:14549aaa83fdf244b03fd2dacebdf8e02bVirustotal results 14/58 (24.14%) 69.8.25.109443Heodo
2018-11-07 21:44:14549aaa83fdf244b03fd2dacebdf8e02bVirustotal results 14/58 (24.14%) 69.8.25.109443Heodo
2018-11-07 15:11:280e5ea825b28fcf8877a6e5167cdb9b68Virustotal results 13/59 (22.03%) 69.8.25.109443Heodo
2018-11-07 15:02:22bce55d674ec9859ca8e03e659c4f908bVirustotal results 37/59 (62.71%) 69.8.25.109443Heodo
2018-11-07 13:16:19d90719fee0e998cd5ef251e08147d629Virustotal results 13/67 (19.40%) 69.8.25.109443TrickBot
2018-11-07 12:24:22219caadcf73f79ca789422b8825f932cVirustotal results 11/59 (18.64%) 69.8.25.109443Heodo

# of malware samples: 8