Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 75.128.237.42. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:75.128.237.42
Hostname:75-128-237-42.dhcp.mrqt.mi.charter.com
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS20115
AS name:CHARTER-20115 - Charter Communications
Country:- US
First seen:2018-11-06 13:27:49 UTC
Last seen:2018-11-07 06:55:06 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2018-11-07 13:15:078ca9a79e88a066d60ed8f9d692dfb2aeVirustotal results 37/59 (62.71%) 75.128.237.4280Heodo
2018-11-07 11:16:1224f751a92444ba31196d2d2f80daf2c7Virustotal results 32/59 (54.24%) 75.128.237.4280Heodo
2018-11-07 08:34:082cc34957ab7bb7af23b57f26c08bea7fVirustotal results 36/58 (62.07%) 75.128.237.4280Heodo
2018-11-07 08:27:24ba1a80b6e58869c73cc7332f22921998Virustotal results 15/59 (25.42%) 75.128.237.4280Heodo
2018-11-07 07:24:37ccb1e1e5ca7490df98487a7b962581dfVirustotal results 15/57 (26.32%) 75.128.237.4280Heodo
2018-11-06 13:27:493f69f6a0d0add8c3696b5cb6dd2d43cfVirustotal results 12/59 (20.34%) 75.128.237.4280Heodo

# of malware samples: 6