» flux-setup.exe
Overview
Analysis
File Details
Programs (2)
Downloads (43)

flux-setup.exe

Michael Herf

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

flux-setup.exe

Publisher:

Michael Herf (signed and verified)

MD5:

9dbdee49dadd657065836572be8ce383

SHA-1:

d8c25ac39c7da6224954ed0af506a877125ca4ff

SHA-256:

531d995e171b605e53b363cd4db3138c8e6c2887722c9ae3c13b9fae516ac177

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/24/2024 9:40:31 AM UTC (today)

File size:

546.3 KB (559,424 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\downloads\flux-setup.exe

Digital Signature

Signed by:

Michael Herf

Authority:

The USERTRUST Network

Valid from:

11/19/2008 7:00:00 PM

Valid to:

11/20/2009 6:59:59 PM

Subject:

CN=Michael Herf, O=Michael Herf, STREET="1315 S. Carmelina #201", L=Los Angeles, S=CA, PostalCode=90025, C=US

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

5066269CA42CFF413FBFC60A2183C4D3

File PE Metadata

Compilation timestamp:

2/8/2008 4:25:02 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

12288:cVUIIXRq2Yhi76GZgLy8SfEJhCr6sT5rs1DrmvV61:c+jE9i0VSMCr6Ci1DKvV61

Entry address:

0x30BE

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 58, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, 3F, 42, 00, E8, E1, 2A, 00, 00, A3, 64, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 28, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 4C, 91, 40, 00, 68, 60, 36, 42, 00, E8, 98, 27, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 86, 27, 00, 00... 
[+]

Entropy:

7.9613

Packer / compiler:

Nullsoft install system v2.x

Code size:

22 KB (22,528 bytes)

The file flux-setup.exe has been discovered within the following programs.

µTorrent by BitTorrent Inc.

µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.

www.utorrent.com

12% remove it

F.lux by justgetflux

Publisher's description - “f.lux fixes this: it makes the color of your computer's display adapt to the time of day, warm at night and like sunlight during the day. It's even possible that you're staying up too late because of your computer. You could use f.”

stereopsis.com/flux

4% remove it

The file flux-setup.exe has been seen being distributed by the following 43 URLs.

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1451294858&Signature=GLzJ8TiNN-fAUhmqcoNs~6kq2YXDeskEeu4qTEHlbFhC016HZl9RKwa9UbG69tWvIhLdmjNKl2juQuch16DsWJgzDqf-4-gwhhdhNMDfl3d5c92Cfs6-i601pkV334YwwSErYK~idI0UnN5faXggahBEObhA3BMCfVwAi-wrarE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1475905491&Signature=GjGaRuI9Bm7eND26zU3DQ4-J8GZdCAcnAP25YXlf0WjXk6CHkMz2WZVNldxKpg9v9kQmNlAJmRgkndPvtTUiICg~GILbvG8XmxNf1rXmF3obZ-c54qEiPjj7CXTLDpw1ak0SIgNIw2LvAjWYcu6H7NmGV6czvXdhXvIQmvF6PbI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://f-lux.software.informer.com/.../

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1476575682&Signature=Y4y-3uigYnIn9TCOw~H8u~MRVZ-HluCdOJPHnUON3l8H0CNxEa~c3n6NRywrl3i4PCpP15aN4IoxtRTK35qLK6sUi~WxbWoKQ2L~eGsd8strzw~qYYfHIKhrR~Ksyil0~nL5t2CHL0ffFUWFYHKMQYUeNDanqf~eD6dSyIx60MI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://download1069.mediafire.com/s45odjphvvag/.../flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1440991186&Signature=R4JmSEhDPFlj9bldEagn6nONnMMxA8SC1SaUkaUtY4GS9eikYY2V-uxfURWYRrOFmf2LSxW5sWtQwWXCqxVpMf32iscyEP~nwT2hhArbgX3RCsqcmjUczhZA0OzOXfVMFnKKOSQ6aBCSmFiQCjjriuTDcmYEidp4vpklzdFPvrg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1481433806&Signature=iNmN~dxputwsn9XrYx72tBzcLccPPainEZCbwrZVmhS~6iFjFuZM7ww3SjoSmYWroyXmbqNz~pxHxB-3X3HTLADG8QhehXMeJzjajOGzHRrmRoHZqeLR6ww14WTsj0VTiD~7yWEapepHhkNsodTJysodlxFLC0OYjjdLAeDjkww_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://en.kioskea.net/download/.../download-19067-

http://www.ranchsendgift.com/27xfRTqr7I3HZUrIkNTyObymArBGpUODjEBL25rDdajTDhOqjSwOydOvHvfnyoGgY6hHPaQbmk8ZgM5PAsrWaqYqsNPj8gyZ2AjupJwKqQPr9fXxsTkMgW5M9xijMZbznr90as4qWOhFmAQVlD7pTmqwOfPt7q 4OxZ1a_SGl16yIeIn9r45imSbjuEHoNpTEIHSR819Bee9xVi0A63iRmfE08wRjQ==-Gy4AAERveF72flNKkVHAIQd6QP4WWWABWFltYG5cz3sC2mG1QmHqMXGvwSc=

http://cdn.whitestorageocean.com/c?x=74Dtb74gAA3PHctj8BkCdHgt7xbIb4n3/dphbfqVFyA=&c=lIx7zLt rtkxswF479fgT5ndfAB IKHD oYfG75QOpp1BRzrgr2gvyWuUaxEe4QvI7o8gPTcGJQdwHCuEBb6CJr/Gchj5tso EpJQ4sJ87vclGn9FVD7UrklBs 8rizt&fallback_url=http://files-download.komputerswiat.pl/AkcesoriaINarzedzia/Akcesoria-i-Narzedzia-Inne/.../flux-setup.exe&fallback_url=http://files-download.komputerswiat.pl/AkcesoriaINarzedzia/Akcesoria-i-Narzedzia-Inne/.../flux-setup.exe

http://www.ranchsendgift.com/GlExOqtQp47xLcFmsCU6VsMx3lJLYpa wI_0RBbT1oSiwE uXKoj9PvI8pjf YuJxZk8j2Vm78SZR_p60gWFW22PZi kHYlWptzZ9V5E7QeO99GEx7VWmutxIYP 4_K_k3Er8 VCu0byGW9NLxEp9DJrcGDmFTc7Yups hYwenIEYaH1Oib6OorTSiif1rndwctc3A_E4OXXqmpuEKZ1qVOrjDeQGA==-Gy4AAERveF72flNKkVHAIQd6QP4WWWABWFltYG5cz3sC2mG1QmHqMXGvwSc=

http://www.traidnt.net/vb/safety_link.php?url=http://.../flux-setup.exe

http://download853.mediafire.com/g09uhncckadg/.../flux-setup.exe

http://download978.mediafire.com/wl2rrw0j6whg/.../flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1470047971&Signature=gEdc8W~KnYBc144ySPu4~5SBvr2~LaHtPGgD8A0~N-YtL8Glrv5s~t2vr5H~7Ffj79Tie1LTPxh9aRoHGxnCO6eqEAu3z~ZH3mlGX-Zha-WGI3nLbDMpSHVnzYouT7FxEPJPvcZAsa3DLnlgO6tjuaGie8XW0SMtU1TiDfrCBFY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://download1069.mediafire.com/s35a2dsem8fg/.../flux-setup.exe

http://download853.mediafire.com/htwfp4zrmtyg/.../flux-setup.exe

http://download1042.mediafire.com/545lly55159g/.../flux-setup.exe

http://download1947.mediafire.com/28qbz31rl8eg/.../flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1458807489&Signature=ZRY1IeivAdWahG4dbFn4ZHOlavxcP7bQ-rZ24AHB-f3RvkeFyCshAEJLxxR2vm3ZnjMPc4WiHCJgskwQYkDGW0-4oYWIdh~7G5BO95yE-fyHhCbkB4JuV6nABalLLSrGk7373M3ZdlCPpkTQdqyeHH8qdfXG1jeo6TchtRfzgh4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://ec.ccm2.net/ccm.net/download/.../flux-setup10.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1461069386&Signature=capKUiNgSEt1tA9riXxNvDoBAX7beaxRhcKLDCIr~bHsfxDBKVDGKiGlazRJs9vWx7wpkuu4OIyTJAKeMqCr1L9wIqEarMB-z9ijwdsOZ99VCcc-1FDtXkFVu~Niwlbmy-L3wEYK6QhWimn8MXSnmQw5lYIZ68CVxMeOAuQcvYA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://download1947.mediafire.com/wnm9fi9h5weg/.../flux-setup.exe

http://ec.ccm2.net/www.commentcamarche.net/download/.../flux-setup10.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1449161049&Signature=BPtXU5mSSPM8ypNLDvR7-wpgBGEBiUM6j8jYg~RYVSx1116a8H4FxcCbmf4SHlncKKWByWX-YAbTmEOo4sYkS6ISb9dHlUWbH8Kx7Sxbrnv1fXU6tFj0VLiQlGJf85HPH9nfJX1wjiNE8u6DjJyu7by7xURb67sZ6VYqRfJfvo4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flux-setup.exe

http://dc604.4shared.com/download/.../flux-setup.exe

http://www.commentcamarche.net/download/.../download-34087488-

http://s3.herf.org/flux-setup.exe

http://gsf-cf.softonic.com/d8c/25a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=79169&instance=softonic_es&type=PROGRAM&Expires=1428315844&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=URrHpaOT2smvZAMKVrAtmiyfsmfxU6es~FBgcC1b4rvd9iEAN9R1A5VafaP7q~xlK-ddm2iEq-qzYptodhU1VRspw6hGRWFBJ3jxoolUvLq1Vytw0Y1gZC8XbfLh72jwxfGeXZWq5wsAKODimHN4X6umJDYcpnyBXutb9ZfPv1U_&filename=flux-setup.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=f8b621ae5d39b62438e9006ff6c07371&file=1

Latest 30 of 43 download URLs

Scan flux-setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.