www.singulardownload.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.singulardownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Thursday, October 31, 2013

Expires date:
Friday, October 31, 2014

Updated date:
Friday, November 01, 2013

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Avira AntiVir
ADWARE/Adware.Gen2
100.00%

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Amonetize.A
96.00%

Trend Micro House Call
TROJ_GEN.F47V0218, TROJ_GEN.F47V0220, TROJ_GEN.F47V0226, TROJ_GEN.F47V0227, TROJ_GEN.F47V0223, TROJ_GEN.F47V0309, TROJ_GEN.F47V0313
96.00%

ESET NOD32
Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant), Win32/Amonetize.AO (variant)
92.00%

McAfee
Adware-Amonetize!0A13695E904F, Adware-Amonetize!806486D56A37, Artemis!24372AE249E4, Artemis!D781C2D445BA, Artemis!8CC2F0A16469, Artemis!EED95BD36931, Adware-Amonetize!DC035ED17CF1, Artemis!74BB457D49AD, Artemis!464F7A8A3D64, Adware-Amonetize!AFF2C2D27B7F, Artemis!F67567FFBD07, Artemis!31EAC5D0E8D7, Artemis!AAD320A99B7B, Artemis!B5A36DCF2EFC, Adware-Amonetize!75B5F2E2A99A, Artemis!A70A60DB4353
84.00%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize
84.00%

McAfee Web Gateway
Adware-Amonetize!0A13695E904F, Adware-Amonetize!806486D56A37, Artemis!24372AE249E4, Artemis!D781C2D445BA, Artemis!8CC2F0A16469
80.00%

AhnLab V3 Security
PUP/Win32.Amonetiz
80.00%

Reason Heuristics
PUP.Installer.Amonetizeltd.?, PUP.Installer.Amonetizeltd.N, Threat.Win.Reputation.IMP, PUP.Installer.ShetefSolutionsConsulting1998.n
76.00%

avast!
Win32:Amonetize-F [PUP], Win32:Amonetize-J [PUP], Win32:Dropper-gen [Drp], Win32:Amonetize-N [PUP], Win32:PUP-gen [PUP]
76.00%

Sophos
Generic PUA BP, Amonetize, Generic PUA GM
64.00%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic
60.00%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:HEUR:Adware.Win32.Amonetize
60.00%

Dr.Web
Adware.Downware.1655, Adware.Downware.2160, Adware.Downware.1575, Adware.Downware.2250, Adware.Downware.2467
56.00%

Baidu Antivirus
Adware.Win32.Amonetize
52.00%

The domain www.singulardownload.com has been seen to resolve to the following 9 IP addresses.

ec2-107-20-210-63.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 29, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 29, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-235-189-159.compute-1.amazonaws.com
March 27, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 20, 2014

File downloads found at URLs served by www.singulardownload.com.

14 / 68    (PUP)

 
Latest 30 of 84 download URLs

The following 6 files have been seen to comunicate with www.singulardownload.com in live environments.

URL:
http://www.singulardownload.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache/2.2.15 (Red Hat) (PHP/5.3.3)

Detection Incidence by Country