Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 81.7.10.106. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:81.7.10.106
Hostname:antenne-rhein-berg.de
Status:Offline
Spamhaus SBL:SBL426702
Malware:Heodo -
AS number:AS35366
AS name:ISPPRO-AS ISPPRO-AS covers the networks of ISPpro
Country:- DE
First seen:2018-09-29 06:53:55 UTC
Last seen:2019-01-08 08:45:50 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-01-08 20:06:352ebb7b99db161cb01e62ad1d3f9868afVirustotal results 51/68 (75.00%) 81.7.10.1067080Heodo
2019-01-08 12:56:5976d1c1e8dfc20d97eba3737be876fa37Virustotal results 42/68 (61.76%) 81.7.10.1067080Heodo
2019-01-08 07:59:5422802374e06e132ee9ae7fd99a15a308Virustotal results 48/67 (71.64%) 81.7.10.1067080Heodo
2018-11-22 02:14:33e78f1d5e7106f8f7823946063e30ff23Virustotal results 39/68 (57.35%) 81.7.10.1067080Heodo
2018-11-18 18:44:02c46f3d4a5f4666d2c2295805df686b43Virustotal results 30/67 (44.78%) 81.7.10.1067080Heodo
2018-11-18 02:57:328acde16cbf0ca192e4ab1431a8ac27f9Virustotal results 42/69 (60.87%) 81.7.10.1067080Heodo
2018-11-13 16:51:389c01f51352a3dfe92ead268d02e8fb16Virustotal results 14/58 (24.14%) 81.7.10.1067080Heodo
2018-11-13 16:50:50d8b636dadcc6155ab192ba4b067814f9Virustotal results 13/58 (22.41%) 81.7.10.1067080Heodo
2018-11-05 13:06:19f6798e6c0e49c66d080dce61f66c3afcVirustotal results 34/68 (50.00%) 81.7.10.1067080Heodo
2018-11-05 13:06:19f6798e6c0e49c66d080dce61f66c3afcVirustotal results 34/68 (50.00%) 81.7.10.1067080Heodo
2018-11-05 12:38:44d21343cc6de08f40791341b1d7ae56c6Virustotal results 37/67 (55.22%) 81.7.10.1067080Heodo
2018-10-17 05:45:372a024c00298ad2fe602fc28395f6aa79Virustotal results 41/68 (60.29%) 81.7.10.1067080Heodo

# of malware samples: 12