URLhaus Database

You are currently viewing the URLhaus database entry for https://foodmenu.com.pk/islamabad/KV1W2R/5h66pba8lywrv/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	704049
URL:	https://foodmenu.com.pk/islamabad/KV1W2R/5h66pba8lywrv/
URL Status:	Offline
Host:	foodmenu.com.pk
Date added:	2020-10-16 21:21:06 UTC
Last online:	2020-10-17 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-16 21:22:27 UTC to eig-abuse{at}endurance[dot]com)
Takedown time:	14 hours, 57 minutes (down since 2020-10-17 12:20:14 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-17	INV_OHL_100120_TTJ_101720.doc	doc	360a5cb7eed923017b4ef07460e7652362cdf1fc0a902516addbb8e244e30134	53.23%	Heodo
2020-10-17	C_24206327591319.doc	doc	bd5e318573106192eca830985c93ad07583928c7ba9b1f752ee5ce3e38eea593	53.23%	Heodo
2020-10-17	PO_10172020EX.doc	doc	b61cc94625d0aec1674d3ffb90ade5b30575e1eb8a755f9944cfcb4d40378041	51.67%	Heodo
2020-10-17	INV_GC204Z5DHDAAKM.doc	doc	c5b951c65f67f1136dedc670dfa0cf0fe59abb9172a0fe5a6011e2882e129e8a	54.10%	Heodo
2020-10-17	DOC_NK8019018119KA.doc	doc	169fa4037e8c45a38a3b2e862d860e955fc810c63682c78155bbbd45820b83bf	54.84%	Heodo
2020-10-17	PO_10172020EX.doc	doc	83af4eee8013969fd28932937f24ed1bb6031013a525dcd161ed6914b41feba5	53.23%	Heodo
2020-10-17	BAL_740891549896845435617.doc	doc	ab13f6f95154d0396465d9bb9d42e49708e2efdd49c259b7189ae2c7c7c2d389	n/a	Heodo
2020-10-17	REP_YVL7B74LXO.doc	doc	5bc6a9797e0e1b206a0d2d341e88b730f01312279122e98e1dc2873f48b2102a	n/a	Heodo
2020-10-17	40130156528406740456.doc	doc	4ff23dc1f01527658819824659e03edb6ee7d16cdf8704e61548acf040415238	48.33%	Heodo
2020-10-17	A_12421173.doc	doc	ff9996026d66c80170010bab3d84d0ba1ecac3a6b87f8e694008feb0bc0b3d4f	53.23%	Heodo
2020-10-17	BAL_ZCH_100120_KEN_101720.doc	doc	ea065a0dbc3ca645237d0c98e82887ca636451f3fa822c6c0a087a2fe98c230f	n/a	Heodo
2020-10-17	DOC_FXZ_100120_LBI_101720.doc	doc	c0f957552ea0bfa9ec43b903ee17f870d19d10026a6e967b5ba434e26758232f	53.23%	Heodo
2020-10-17	REP_BF0059147236YX.doc	doc	9e5f94414bcc33c4f9405dd2c0747ccc8c79921dbaab834a1ce8cd0205bb1f9b	53.23%	Heodo
2020-10-17	PO_10172020EX.doc	doc	127e5f88e44a1886181820087f5a2d1bb09ecec7ca49c027c33c9cdead79c1ac	n/a	Heodo
2020-10-17	PEP_19066829.doc	doc	499b6b84f53cf364ec9102e8947398e3435340efcc0638338dc94d2ffe7f635d	51.61%	Heodo
2020-10-17	39356333.doc	doc	4f1b55b5cbbaa28b0d87b93dd256cebd16df18a51e081378940ad152fd24da8e	54.84%	Heodo
2020-10-17	PO_10172020EX.doc	doc	7563b098e425087d70e59bc0ad1d712d39ec6286fc63eaa9a9eea68f9a7ede26	51.61%	Heodo
2020-10-17	REP_301156350197.doc	doc	8358ae3aef04560a786b84a17aa88a981d700993291a3b11aa001fab16829ad9	51.61%	Heodo
2020-10-17	DOC_91284356.doc	doc	3cf860a4fc48852cfc15307168a655fe09d970de805123a370c888f18b949aaa	n/a	Heodo
2020-10-17	49504707.doc	doc	33e3f84944619fd92c3e53215fafb2b4b962f3e7b97ac0e358959d8ca710de70	54.84%	Heodo
2020-10-17	REP_54141864.doc	doc	02730b23749bb5e945d78771425520fe94a15b5647f34a7efeca54a72c9297c9	52.46%	Heodo
2020-10-17	16669207.doc	doc	fd0ec2733cb7fc4d8f934cf81b56a9a6fd2dd7290c257cdf4c2a1b3da2bcfc10	51.61%	Heodo
2020-10-17	E_PO_10172020EX.doc	doc	055030f2d18fed27b4bc4f3e461f0eceb8308cbc3182ec2eca899c70d9aee715	51.61%	Heodo
2020-10-17	FILE_90852101.doc	doc	eb06448eea7b0d73132945671275ea572688e13de195a89974d8315900ff8cb7	52.46%	Heodo
2020-10-17	A_793841781820.doc	doc	af4011781c0a2add45a6f72b8d52e5bd7d7381ff28c93e478dede0ff100ff237	50.82%	Heodo
2020-10-17	INV_87261848.doc	doc	99acccb026919eac0d3249c8a9207a71d032fbe59c7540c12aee398ae86e6780	50.00%	Heodo
2020-10-17	INV_OZ2QWCJBCKIAI.doc	doc	8d9046f3f3aef8eaa74dbcc4aa33811b0f06438b3c4fd36bda76c6190da4f669	50.00%	Heodo
2020-10-17	UDEWMK5V8SR.doc	doc	8e0082cbc47e4f5638313b20400e4874bb6371c424ee7ba8eb29009692653676	50.00%	Heodo
2020-10-16	UH3929555082QV.doc	doc	3772d83153c2d54a8a3dd72055370d3db69948bf4eafeb69018ce518c7801d05	n/a	Heodo
2020-10-16	FNM_100120_LPF_101720.doc	doc	bf79372e0c3a2b7a3b0df0f3994621206443404f5c382b8ad5e5c609c6b0e043	50.00%	Heodo
2020-10-16	7853762595.doc	doc	6539d2ac4a847b3444866e22b642a335e3d8b92d40031a090fa315aef1af2930	51.61%	Heodo
2020-10-16	BHQ_100120_TGN_101720.doc	doc	b22624074fb5efd4b4c7a4882f6a7bf06faa842197e9fc9199e85c8c1fe02b8b	n/a	Heodo
2020-10-16	OIU6Z7QBP.doc	doc	ed7305c8affe8cff65cc112f1d79f66621e2632a8ec647ce7aa6817e738b989f	n/a	Heodo
2020-10-16	65648823.doc	doc	a037e72508e704f78e45277eed02a1c1a311f6a41b63808f53f991af12e5c685	46.77%	Heodo