URLhaus Database

You are currently viewing the URLhaus database entry for http://rikotut.net/rikotut4/apvr/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	426765
URL:	http://rikotut.net/rikotut4/apvr/
URL Status:	Offline
Host:	rikotut.net
Date added:	2020-08-06 22:05:06 UTC
Last online:	2020-08-07 23:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-06 22:06:04 UTC to abuse{at}nebula[dot]fi)
Takedown time:	1 day, 1 hours, 11 minutes (down since 2020-08-07 23:17:18 UTC)
Tags:	doc emotet epoch3 heodo Quakbot

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-07	INVOICE PMSV6 052998.doc	doc	a4b97280b1cceda62816b36b8b40327eea965a74334cd171eeca03b3158d3177	37.29%	QuakBot
2020-08-07	Invoice-SN7-355858192.doc	doc	96c2710133ec54c60394683f148a94ba31cda1182b21b8f0f3285d78c92c0336	35.48%	Heodo
2020-08-07	INVOICE_3497_166732.doc	doc	7ce67620298aa7d0fe5e7f2bab8e052f4a4ce937c3300c92875e33d7b466acc0	36.07%	Heodo
2020-08-07	Inv 799 913032.doc	doc	6d9ffb2447adb083ad20788cb467c96a7f91b27d9a5a9eb35a13e2471d909b32	n/a	QuakBot
2020-08-07	Invoice 64 586488927.doc	doc	bb196956c5e57876daf8c64828c2b0cff8f83fc540f7ff492ecd7632f8a235dc	36.07%	QuakBot
2020-08-07	Invoice U8054 4434575.doc	doc	66762226f0f7bab8acf658aaf69557223a227f9225671446d93e502b6d221fd0	30.65%	QuakBot
2020-08-07	Invoice V5 44364896.doc	doc	a1d3c10648113856a54d5142939fddfc547781a277390386c2c66731226e65d7	31.67%	Heodo
2020-08-07	Invoice-GZYN7-6828085.doc	doc	cfabab6ffb980a446a83e4e44e6bd9a0f7d5eb5836628e4934ae4987f58ec211	29.03%	QuakBot
2020-08-07	invoice-Z0-704477270.doc	doc	2232504c5ac6d12d0c0acc9590c5957289d5177e41c502d10797f7bfcf436fe4	27.42%	Heodo
2020-08-07	invoiceV9202191249286.doc	doc	b0ca63e844878888dfd2c5e0ec67432ddbf00dd81de2f91d7b807308d942b84a	27.42%	Heodo
2020-08-07	Inv-YCS94-0568861.doc	doc	38484bba81fe221467f8808a6667bd4344ab116fdfa4f92a1acccbf8e86d0b4d	n/a	Heodo
2020-08-07	invoice-FW7532-885265.doc	doc	8dca57bd20cb1aad6ec1fa7527c59fac9aa9f278935d7eabade0ff47817bda58	25.42%	Heodo
2020-08-07	invoiceTO04548667370.doc	doc	f2f9d8844e0ea0472349e17048e353522a138927c4b88802535845aa231f0833	24.59%	Heodo
2020-08-07	INVOICE-L538-9941276.doc	doc	03ebc44cfbcccf33f186b7fa2350c9b7043d031b274921de003e30d9d999dfb8	26.23%	Heodo
2020-08-07	INVOICES8902031355.doc	doc	73a3928db928299dd820e0673e47b3ba4173c06c8c22c488567d1999d11f9033	n/a	Heodo
2020-08-07	Inv_W87_453217172.doc	doc	ecc1677b0db15c934c496fefbcc788a3b28b9efc08d24a373d3ef59cda8b5c4e	26.23%	Heodo
2020-08-07	INVOICE-OAZ1-214923857.doc	doc	d5202e4ed5df576f77a60bb522bcd3083a63427ed51096c87214e5a1ca9b6ed5	26.23%	Heodo
2020-08-07	invoice-4-327950.doc	doc	c6808a80402ca8681d1d154b3c6f34f3234641262b544770e01db268c66b2de8	n/a	Heodo
2020-08-07	invoice-AYIF20-271372968.doc	doc	4b2a3123f9c35cd05baa562f88b99a767710e4576ab2f5da552c910fecc5b76c	26.67%	Heodo
2020-08-07	INVOICE V5 668293775.doc	doc	ebfc577418a0ab193288a2ed0c540e2d00b5a5e804aecceef9df0f6f3f90fa75	n/a	Heodo
2020-08-07	invoice-UAP83-79278896.doc	doc	382b082eed966058a7515440d5f5a584e13539b7b12e3c75ccdba195df22f2d2	25.42%	Heodo
2020-08-07	invoice_UERS6_78261589.doc	doc	f0f5f013ab26d3b00b287eaa4f95787de6f79f1655fdaba066db4dff469588df	34.43%	Heodo
2020-08-07	Inv_WA7_93864071.doc	doc	9aefb6f389c5867c81bd2ed1aabdb2c82eadbb256f417b396c0d50d1acc3c942	36.07%	Heodo
2020-08-07	invoice-UWFU36-39300924.doc	doc	951dd6a7741aea4cff5813cc5546bccc10ba19d357778b8ea3b7192c5b9dfb10	n/a	Heodo
2020-08-07	Inv H7 652364.doc	doc	3dbd6983aefc42a5197e52a2463a24ae5d94ecab6a499a4c0607773944c3bbde	29.03%	Heodo
2020-08-07	InvXF0962407.doc	doc	98f5d31d0ece06d1167361e0886843c5d0e28c0c394cc105256a302be66038a3	n/a	Heodo
2020-08-07	invoice-IE91-681303.doc	doc	6cdade839f05e749d79545f061af1a49db0f84ebbbb8cdc86f7738c7e5d568c9	27.87%	Heodo
2020-08-07	Inv_RV9_607672635.doc	doc	1c024255eecede738af23041dce02427bf7d670769be308c2982406778aaa045	27.87%	Heodo
2020-08-07	INVOICE_N000_9849153.doc	doc	4528ae49466b05296cde29f30b295e9c405e8fdb60e9ddfea00f6ccfd7d950b9	27.42%	Heodo
2020-08-07	invoice IT8298 9983892.doc	doc	2578059d07477ef34a31cf4195c47543fe2463d6eea9687ab6c2b4416926ff37	27.42%	Heodo
2020-08-07	InvoiceYK56019140058.doc	doc	031e43825f2b7871a3f99e55db0e9cfba4045a7a22a45d283d9783e1b2590e09	29.82%	Heodo
2020-08-07	Inv ZZO357 261738.doc	doc	c9a9fbc41a7285f67d63ed23242f654f3e2a86ddc21f38e5b7d7059c5af1de4c	27.87%	Heodo
2020-08-07	Inv-ISA80-05146923.doc	doc	a8585830fa13dad333bb6013a31fbd091a1bdf83f13eee388f27e3aab345fbef	27.87%	Heodo
2020-08-07	Invoice_UZRX651_691627.doc	doc	4f45c033ce53894098871f4cc7496a3c068390adaebd9773d649ab906581822d	27.87%	Heodo
2020-08-07	Invoice-3055-5813847.doc	doc	635ee74a309d9f1f7b4d0096a218aaf10f90d115c83ce91dd0ebf02199b4d84b	27.87%	Heodo
2020-08-06	INVOICE-O26-18201918.doc	doc	98c92f9f7760480bc95e3c091adf4d40b14c4235b7940122ecaf52495a811524	27.42%	Heodo
2020-08-06	invoice YPS230 1321555.doc	doc	111c550d78620796ecd7142666cd079fa74111f56a8ac64dd352f3f74fdfadd1	28.30%	Heodo
2020-08-06	INVOICEFLMA13153850.doc	doc	adb851e80e9be14bfe3061a9ca50f89247712ea6f24bfb21bd43b7a9ceebbb48	27.42%	Heodo
2020-08-06	INVOICE GH0 073571157.doc	doc	a52bf62d5cfbab7f825ee4166a0afbc21f666b8b545843a68e52121f0c1ca67b	n/a	Heodo
2020-08-06	Invoice-YRO22-740089647.doc	doc	b50ceb5e4ab27f827e3266c3de17d432999b7f34a6048cc9fe34a5f1e57a531e	25.81%	Heodo
2020-08-06	Invoice-KS8834-01084039.doc	doc	e99984f11ff3a6792d0a302968ae9f74774d3c66fb9e76ca0554858d3b576997	27.87%	Heodo