www.singulardownload.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.singulardownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Thursday, October 31, 2013

Expires date:
Friday, October 31, 2014

Updated date:
Friday, November 01, 2013

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Amonetize.A
100.00%

Avira AntiVirus
ADWARE/Adware.Gen2
94.12%

ESET NOD32
Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AJ (variant), Win32/Amonetize.AO (variant), Win32/Amonetize.AS (variant)
91.18%

McAfee
Adware-Amonetize!5E25C1B59026, Artemis!D781C2D445BA, Artemis!8CC2F0A16469, Artemis!8D3386F3ACE9, Artemis!9CD2EFDC87EC, Artemis!113F36A23A03, Artemis!464F7A8A3D64, Artemis!462AF8735043, Artemis!F67567FFBD07, Artemis!AAD320A99B7B, Adware-Amonetize!75B5F2E2A99A, Artemis!E73EFB444A18, Adware-Amonetize!D7E90BB18D3F, Adware-Amonetize!9E63DD19C5B7, Artemis!A70A60DB4353, PUP-FBM!F3EF566F9D55, Adware-Amonetize!C061322F7C02, Artemis!5E0EC235EE08, Artemis!ED3B4A4B2A25, Adware-Amonetize!044210127E02
85.29%

avast!
Win32:Amonetize-F [PUP], Win32:Amonetize-J [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-G [PUP], Win32:Dropper-gen [Drp]
85.29%

Reason Heuristics
PUP.Installer.Amonetizeltd.?, Threat.Win.Reputation.IMP, PUP.Installer.ShetefSolutionsConsulting1998.?, PUP.Installer.ShetefSolutionsConsulting1998.n
85.29%

Trend Micro House Call
TROJ_GEN.F47V0214, TROJ_GEN.F47V0226, TROJ_GEN.F47V0227, TROJ_GEN.F47V0302, TROJ_GEN.F47V0303, TROJ_GEN.F47V0305, TROJ_GEN.F47V0309
79.41%

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
76.47%

McAfee Web Gateway
Adware-Amonetize!5E25C1B59026, Artemis!D781C2D445BA, Artemis!8CC2F0A16469, Artemis!8D3386F3ACE9, Artemis!9CD2EFDC87EC, Artemis!113F36A23A03
70.59%

Kaspersky
not-a-virus:AdWare.NSIS.Adwapper, not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:Adware.Win32.Amonetize
64.71%

Dr.Web
Adware.Downware.1655, Adware.Downware.1575, Adware.Downware.2467, Adware.Downware.2313, Adware.Downware.2453, Adware.Downware.3925
64.71%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic, Trojan-Downloader.Win32.Agent, Threat.4785227
64.71%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize
64.71%

Sophos
Amonetize
61.76%

Baidu Antivirus
Adware.Win32.Amonetize
55.88%

The domain www.singulardownload.com has been seen to resolve to the following 9 IP addresses.

ec2-107-20-210-63.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 29, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 29, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-235-189-159.compute-1.amazonaws.com
March 27, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 20, 2014

File downloads found at URLs served by www.singulardownload.com.

 
Latest 30 of 122 download URLs

The following 11 files have been seen to comunicate with www.singulardownload.com in live environments.

URL:
http://www.singulardownload.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache/2.2.15 (Red Hat) (PHP/5.3.3)

Detection Incidence by Country