flux-setup3.exe

Michael Herf

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from update.justgetflux.com.
Publisher:
Michael Herf  (signed and verified)

MD5:
e06d644c3f67d36342c95e949f2b6fc7

SHA-1:
e96281ec0fb4a05388a3e55e443e8477ebb23296

SHA-256:
562ea15b01d4ad2eae1e9dc554969e2f10cccfe23f9ae73b1a4cce29b90c62ba

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 9:54:25 PM UTC  (today)

File size:
478.3 KB (489,816 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
5/3/2012 6:00:00 PM

Valid to:
5/4/2014 5:59:59 PM

Subject:
CN=Michael Herf, O=Michael Herf, STREET=929 S. Gretna Green Way, L=Los Angeles, S=CA, PostalCode=90049, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F44D90F5015B431315399BB0349396EC

File PE Metadata
Compilation timestamp:
2/8/2008 2:25:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:tIg5P4zZEHF1cPEp88eJ5mzSuPUwUKTy5ah:tTMZYF1cO88e6zSuPe5A

Entry address:
0x30BE

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 58, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, 3F, 42, 00, E8, E1, 2A, 00, 00, A3, 64, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 28, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 4C, 91, 40, 00, 68, 60, 36, 42, 00, E8, 98, 27, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 86, 27, 00, 00...
 
[+]

Entropy:
7.9312

Packer / compiler:
Nullsoft install system v2.x

Code size:
22 KB (22,528 bytes)

The file flux-setup3.exe has been discovered within the following program.

F.lux  by justgetflux
Publisher's description - “f.lux fixes this: it makes the color of your computer's display adapt to the time of day, warm at night and like sunlight during the day. It's even possible that you're staying up too late because of your computer. You could use f.”
stereopsis.com/flux
4% remove it
 
Powered by Should I Remove It?

The file flux-setup3.exe has been seen being distributed by the following URL.

Scan flux-setup3.exe - Powered by Reason Core Security