Kevin Beaumont 111 Posted July 19, 2019 (edited) SHA256: 52870d7111aa983f09bbced0cc346863fc3963941acebca90008cf255fc7b864 It's amazing the amount of crap this installs. Behaviour wise it's pages and pages and pages of indicators on ThreatGrid, it's quite impressive. I have lots of these and they trigger RDP YARA rules for MS_T120, because why not. Edited July 19, 2019 by Kevin Beaumont Share this post Link to post
Sherman Chu 8 Posted August 8, 2019 According to the "极速下载器" (Ultra-speed Downloader), the three Chinese AV tools (360 AV, QQ Butler, and Golden Mountain Virus) didn't detect crap. Because you know, they are all known to be reliable...🙃 Share this post Link to post
