Browse Botnet C&Cs

You are currently viewing the database entry for the Heodo botnet command&control server (C&C) 85.143.221.180. You can get additional information about this C&C here, such as first seen, last seen and associated malware samples.

Database Entry


Host:85.143.221.180
Hostname:200473.simplecloud.ru
Status:Offline
Spamhaus SBL:Not listed
Malware:Heodo -
AS number:AS201848
AS name:TRADERSOFT
Country:- RU
First seen:2017-05-05 06:05:01 UTC
Last seen:2019-02-28 11:34:26 UTC

Malware Samples


The table below documents all malware samples associated with this Heodo botnet command&control server (C&C).

Timestamp (UTC)Malware Sample (MD5 hash)VTHostPortSignature
2019-02-28 12:18:40fa95b04f09fb3eb3f958a6b8d5d50fbdVirustotal results 21/69 (30.43%) 85.143.221.1807080Heodo
2019-02-20 11:48:06392992f2b0b76ed6271e8ee81c660a59Virustotal results 31/69 (44.93%) 85.143.221.1807080Heodo
2019-02-20 11:42:421cc6b5a1643320229495046851350773Virustotal results 45/70 (64.29%) 85.143.221.1807080Heodo

# of malware samples: 3