# priknote.com — MALICIOUS

> PhishDestroy identifies priknote.com as an active phishing site impersonating Notepad. 7 of 95 VirusTotal vendors flagged this domain. Check the full report.

## Summary
PhishDestroy identifies priknote.com as an active phishing domain actively engaging in generic phishing activities. The domain targets users by impersonating the popular Notepad software interface, tricking victims into downloading malicious executables or submitting sensitive credentials under false pretenses. Current status remains active as of the latest intelligence updates, and immediate caution is advised when encountering this domain in emails, messages, or web searches.


This domain was flagged by 7 of 95 VirusTotal vendors, indicating a high-risk classification. Registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on March 21, 2026, the domain resolves to IP address 82.97.252.109 and holds a Let's Encrypt SSL certificate. Its recent registration and low trust scores across security platforms contribute to its elevated risk profile. With multiple detections across independent security vendors, priknote.com demonstrates clear malicious intent and should be treated with extreme caution.


Current status for priknote.com is active and unresolved. PhishDestroy strongly recommends users avoid interacting with this domain entirely. Security teams should consider blocking IP address 82.97.252.109 and the domain at network and endpoint levels. If exposure has occurred, scan systems for unusual executables or credential harvesting artifacts, and reset passwords if any interaction took place. Monitor for related domains and report any activity to cybersecurity authorities. Exercise heightened vigilance against software impersonation scams.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-21 14:25:27
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 82.97.252.109

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/b06189aa-91c9-4652-999d-f7cdf24b33c3
- PhishDestroy: https://phishdestroy.io/domain/priknote.com/
- LLM endpoint: https://phishdestroy.io/domain/priknote.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/priknote.com/
Last updated: 2026-03-23