URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	blackwaterstation.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-10-10 18:38:13 UTC
Total malware sites :	1
A record(s) observed :	14

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-07 12:35:29	13.223.25.84	ec2-13-223-25-84.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-08-07 12:35:29	54.243.117.197	ec2-54-243-117-197.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	yes
2025-07-02 03:13:51	13.216.111.180	ec2-13-216-111-180.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-23 10:07:41	44.213.46.149	ec2-44-213-46-149.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-16 05:41:30	3.130.204.160	ec2-3-130-204-160.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-16 05:41:30	3.130.253.23	ec2-3-130-253-23.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-30 14:14:28	3.18.7.81	ec2-3-18-7-81.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-30 14:14:28	3.19.116.195	ec2-3-19-116-195.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2019-12-25 11:25:32	23.20.239.12	ec2-23-20-239-12.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2019-10-28 11:21:36	198.54.117.197		Not listed	AS22612 NAMECHEAP-NET	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-10-10 18:38:15	http://blackwaterstation.com/bbufyk/pg89dftf8n9...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-10-12 01:02:41	a85cc2088eaf316b8fcf3c7f33996b1acf93f99f820eaa9dfac83d0637adc9ce	doc	Heodo
2019-10-12 00:16:44	e2d82d020fd7232a66a9a6f7a2fb934b1a2d4a037f1dd4126babf91176510f22	doc	Heodo
2019-10-12 00:02:42	0c01946813b8753e6cf65804400eba28db24416f4dec1226f33f7221614b286a	doc	Heodo
2019-10-11 23:47:38	c76ad8c515050ede4398828c8786efe76e25f972cb5d1ed96290786001f5cfa7	doc	Heodo
2019-10-11 23:32:42	8fc91396de84667cf2570c5dca848ef3cb311577ab76b0203f5c1d5fba6e052d	doc	Heodo
2019-10-11 23:17:46	fb061b509b6a0106c5449a238778280039d47483a92d722caddea5281015d945	doc	Heodo
2019-10-11 23:03:38	0debb52d3e04d91f9a72785af3a83b5683b059659289418736ee9ffc4aa23b08	doc
2019-10-11 22:02:33	c6d39eabff69e6e0c634a34f040826d8f437a770fba340227a8019ebabed4f7e	doc	Heodo
2019-10-11 21:45:40	6125489453c1824da3e28a54708e7c77875e500dd82a59c96c1d1e5ee88dcad7	doc	Heodo
2019-10-11 21:29:31	1b21cf35d5bf666e300a8b9e47ecf065e5e2cac0eb4ef6b3057a82bf7719bbbe	doc	Heodo
2019-10-11 21:15:34	0d856901354a61303f610134c9f288a154f6030dbbd68a09d6eda332d9c5f6f8	doc	Heodo
2019-10-11 20:16:49	662ba74a3863a99dc6ce27bf18ae06d3ffdc5d26c7a84b2d5c8fdfb0316d9146	doc	Heodo
2019-10-11 20:00:33	2a8ddad526a2bbf57fa9566d00c6347684f427d9c16f7244dd0bed0ea64572a5	doc	Heodo
2019-10-11 19:46:30	a1077231bc025514859fa58141c0cbcec951aabac93dbd77fce2f23e9a97025a	doc
2019-10-11 19:33:30	2227247f2e71f3d0f6446c7c81e21dd83dd5842574a81e29e4432706c697cdbf	doc
2019-10-11 19:20:44	f1722c469f9fcbe2fbd652fbdf0a2adaddde8221b03ad2446490a0caae541039	doc
2019-10-11 18:33:36	979f9dfdd8eab83cd27da2bd8da0f7ba9546407c5fdf5c27b466a72c89c6b98e	doc	Heodo
2019-10-11 18:19:35	69fb35201338e07002d6ac1cc263714c5beb5ea8e0717a0d4f9a35cfe903a2f0	doc
2019-10-11 18:05:36	de9752e65eef8e813a25cd7daf3e54bec2c0ea8bc4dae4052991b87971034e9f	doc	Heodo
2019-10-11 16:35:35	9e1d7cd63b0edcb4b3c4b1c86ecf477245ba82b4291bf26484fe2dd6cd9d12a1	doc
2019-10-11 15:49:31	c96e123865ea3b3cea184bd021ff5c2242dbc0a9b30cd2e916af7bc936c711ba	doc	Heodo
2019-10-11 15:30:43	efbf4355ea2b430cdd94e8320aeb3f84e2c3ffdfe053d292b1ac3d6a463ec2f1	doc
2019-10-11 14:44:30	2c00d66e32eee99c44fef2ee8dab6ad8253433b48dc1dcd6fa63f1b688baa63f	doc	Heodo
2019-10-11 14:09:43	5df1856526cf9fa6128cf1e9d5f3eb5cbae9927599fc8a3cb7aa23cfa62248ee	doc
2019-10-11 13:22:33	76a62f7e63606a966378d9f3ba8fcec5a7cbb1e67caf749a9cc77e20092aed08	doc	Heodo
2019-10-11 13:00:42	f0f7d091da00472f4f35e70fc23317cab77d70076e94a9239c6d4d476f197ed8	doc	Heodo
2019-10-11 11:46:37	1f08e5bd06d1bde318055f626dff14677005ec9200c533c74a98cc68ff1b648b	doc	Heodo
2019-10-11 11:00:37	4166fabbbd12ded7de1561c3bb7cc3eda1889562bb268ffaeca0eb828379bca2	doc	Heodo
2019-10-11 10:13:27	4e91a37ebd2c6b0aad3b1aaf1d2d09c0d4187e7c3d0fff94327c30f72572825d	doc	Heodo
2019-10-11 09:50:25	9caeb7939d720620791e0977ce3b7331d59e39672b647a479c12f50c23001ca7	doc	Heodo
2019-10-11 09:25:31	069e184bae8a676d584ca8df23ea4ba998ffab0b067d031cdac1df7a041a6bbc	doc	Heodo
2019-10-11 09:08:24	bc9a221072a7b0e6b7228bd0235bf19350dcfd626360d4c1edeebfa895bc69e1	doc	Heodo
2019-10-11 08:21:31	2aa3bc1c73221e8cb02ba6793487e0b7e88caf38dd40da5d1a42d3f36147b5f3	doc	Heodo
2019-10-11 03:27:24	f2c0e019820d4117ea66130362fba34a0dfed13ea37af7571de1d6b7c5aa3b26	doc
2019-10-11 03:09:23	4a913d6da563604d246a53c01a1652da032d6c6baf9fa1bfccf650635555f97f	doc	Heodo
2019-10-11 02:23:34	75eae2ead8febffb89de4e0e64e3d9c9218cdcf88f83c46f3e1324277fc5245d	doc	Heodo
2019-10-11 01:24:18	edd0ab17a61f95c20b02d9c7b58ef29911fc287846fdd80d6804d7e325e6b4e5	doc	Heodo
2019-10-11 01:07:19	33bd1e5d97265753389685d400934b69456479b92137b4b4ff0457e83e7aa8cb	doc	Heodo
2019-10-11 00:44:23	69fa6b2b52312b8aefd0c77695a215245b8eb499b0904bb31e1f9ede0153fe74	doc	Heodo
2019-10-10 22:17:30	51de13d18a23740342f1c681de4cb6c2baf116f2a4df4730c5338439d05823e4	doc	Heodo
2019-10-10 21:31:11	47cad341e26f67d00adaf1c4e3d0adf77eafd64d24999e35500e364f046361dd	doc	Heodo
2019-10-10 20:45:16	7a8a800c29c6e9dbf732d98fd5eccb9e78078101fee30d287dc534e83e58a22d	doc	Heodo
2019-10-10 19:59:21	cc88b6c2e36692379df13967b38df23ea41e6e39403ea6da5bd20097c74d4142	doc	Heodo
2019-10-10 19:12:15	2edaea083ea39aab08670d19867627d5516f1f78efff05973e3524c3f897a4c9	doc	Heodo
2019-10-10 18:38:14	f9bec21184263fe51a9fd6c0ad64af952b6bad52064183e4f4750d3b2709f4ee	doc	Heodo