home

spotflux-latestpc.exe

Spotflux, Inc

The application spotflux-latestpc.exe, “This installer database contains the logic and data required to install Spotflux.” by Spotflux, Inc has been detected as a potentially unwanted program by 4 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The file has been seen being downloaded from www.djylabrugynufrag.net.
Publisher:
Spotflux  (signed by Spotflux, Inc)

Product:
Spotflux

Description:
This installer database contains the logic and data required to install Spotflux.

Version:
2.10.2.47

MD5:
f7c50ebc132ff559adecd15ee68725c8

SHA-1:
9bde0dd1cd624e24ec74692bbbf1cdf42c46521e

SHA-256:
dbd4746d4e91b5a3aa8675d496143cf81ea2acef28833adc9cb8a29575b9b67a

Scanner detections:
4 / 68

Status:
Potentially unwanted

Explanation:
Part of the Conduit/ClientConnect toolbar/extension distribution.

Analysis date:
1/4/2025 2:43:35 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.Conduit.6
9.0.1.077

ESET NOD32
Win32/Toolbar.Conduit
8.9556

Trend Micro House Call
TROJ_GEN.F47V0318
7.2.77

VIPRE Antivirus
Conduit
27502

File size:
10.8 MB (11,367,272 bytes)

Product version:
2.10.2.47

Copyright:
Copyright (C) 2014 Spotflux

Original file name:
spotflux-installer-2.10.2.47.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\programs\spotflux-latestpc.exe

Digital Signature
Signed by:
Spotflux, Inc

Authority:
VeriSign, Inc.

Valid from:
2/14/2013 1:00:00 AM

Valid to:
3/17/2015 12:59:59 AM

Subject:
CN="Spotflux, Inc", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Spotflux, Inc", L=New York, S=New York, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
787B156DBE2C603B1C32E7122CF5A030

File PE Metadata
Compilation timestamp:
2/9/2014 11:29:26 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:d1W1kyeg8ijtyTIBbStKNN1BbQyeg8ijtyLIBbSmKNNjBF:JgVyTIBmtKNxUgVyLIBmmKNR

Entry address:
0xB888A

Entry point:
E8, D9, C9, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8D, 45, 14, 50, 6A, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 7F, FB, FF, FF, 83, C4, 14, 5D, C3, E8, 26, 0C, 00, 00, 8B, 48, 6C, 3B, 0D, B8, A0, 52, 00, 74, 10, 8B, 0D, D0, 9F, 52, 00, 85, 48, 70, 75, 05, E8, 12, 17, 00, 00, A1, B8, 93, 52, 00, C3, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 44, 24, 0C, 53, 85, C0, 74, 52, 8B, 54, 24, 08, 33, DB, 8A, 5C, 24, 0C, F7, C2, 03, 00, 00, 00, 74, 16, 8A, 0A, 83, C2, 01, 32, CB, 74, 72, 83, E8, 01, 74, 32, F7...
 
[+]

Code size:
948 KB (970,752 bytes)

The file spotflux-latestpc.exe has been seen being distributed by the following URL.

http://www.djylabrugynufrag.net/spotflux-latestPC.exe

Remove spotflux-latestpc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.