installer Archives

Tech Optimizer

July 5, 2025

Hackers Abuse Legitimate Inno Setup Installer to Deliver Malware

Cybercriminals are using legitimate software installer frameworks like Inno Setup to distribute malware, taking advantage of its trusted appearance and scripting capabilities. A recent campaign demonstrated how a malicious Inno Setup installer can deliver information-stealing malware, such as RedLine Stealer, through a multi-stage infection process. This process includes evasion techniques like detecting debuggers and sandbox environments, using XOR encryption to obscure strings, and conducting WMI queries to identify malware analysis tools. The installer retrieves a payload from a command-and-control server via a TinyURL link and creates a scheduled task for persistence. The payload employs DLL sideloading to load HijackLoader, which ultimately injects RedLine Stealer into a legitimate process to steal sensitive information. RedLine Stealer uses obfuscation techniques and disables security features in browsers to avoid detection. The Splunk Threat Research Team has developed detection methods focusing on indicators such as unsigned DLL sideloading and suspicious browser behaviors. Indicators of Compromise (IOC): - Malicious Inno Setup Loader Hash 1: 0d5311014c66423261d1069fda108dab33673bd68d697e22adb096db05d851b7 - Malicious Inno Setup Loader Hash 2: 0ee63776197a80de42e164314cea55453aa24d8eabca0b481f778eba7215c160 - Malicious Inno Setup Loader Hash 3: 12876f134bde914fe87b7abb8e6b0727b2ffe9e9334797b7dcbaa1c1ac612ed6 - Malicious Inno Setup Loader Hash 4: 8f55ad8c8dec23576097595d2789c9d53c92a6575e5e53bfbc51699d52d0d30a

Winsage

June 25, 2025

Before Windows 10 goes EOL, I’m testing three alternative Linux distros to save my 6-year-old laptop from the landfill

The CachyOS installer offers an aesthetically pleasing yet somewhat confusing installation experience, particularly regarding the Bootloader selection, where the default is Systemd-boot instead of the more familiar Grub. Additionally, the additional package installer lacks sufficient context, which may confuse users. The installation process has become more streamlined compared to the past, where users had to deal with multiple ISO images and CDs. Now, one can easily create a Live USB using software like Rufus, Raspberry Pi Imager, or Balena Etcher. A Live USB allows users to test the operating system before installation and serves various purposes such as troubleshooting and data recovery. The author is installing CachyOS on a Lenovo X390 laptop with 8GB of RAM and an Intel Core i5-8265U.

Tech Optimizer

June 16, 2025

Norton Antivirus Review 2025: Solid Value for Fast, Effective Protection

Norton Antivirus has a score of 8.6 out of 10 and was established in 1982. The Norton 360 Deluxe package includes features such as real-time protection, manual and automated scans, the Genie Scam Detector, a password manager, and 2GB of cloud backups. It offers four plans: Norton Antivirus Plus, Norton 360 Standard, Norton 360 Deluxe, and Norton 360 with LifeLock Select Plus, each with varying identity protection features and cloud backup space. The installation process is user-friendly, and the software operates efficiently, using minimal CPU and disk space. Norton has maintained a perfect security ranking from AV-Test for over a decade but has experienced a data breach in the past five years. Customer support includes a knowledge base, community forum, and 24/7 live chat and phone support, with an overall customer support score of 8 out of 10. Norton’s pricing is competitive, particularly for higher-tier plans, resulting in a value ranking of 8 out of 10.

AppWizard

June 13, 2025

XYZAPK Free Download: How to Safely Access Premium Android Apps

XYZAPK is an independent repository specializing in APK files for Android applications, offering modded apps, unpublished versions, and region-restricted software. Users can download APKs for free without needing a Google account. The official XYZAPK website provides secure downloads and installation guides, organized into sections for apps and games. The download process involves browsing for an app, tapping "Download APK," and installing it after enabling "Unknown Sources." Popular downloads include modified versions of Spotify Premium, Minecraft Arcade, and PikaShow. Benefits of using XYZAPK include access to premium apps without costs, bypassing region locks, and privacy from Google account requirements. However, risks involve increased malware exposure, lack of official updates, and potential legal issues. To ensure safety, users should verify the official site, check user ratings, use antivirus software, review permissions, and back up their devices. Compared to other platforms like APKPure or Uptodown, XYZAPK is known for its modded versions, while the latter focus on official releases with enhanced safety checks.

Tech Optimizer

June 13, 2025

‘BrowserVenom’ Windows Malware Preys on Users Looking to Run DeepSeek AI

A new strain of Windows malware called "BrowserVenom" is exploiting interest in DeepSeek's AI models by targeting users through deceptive Google ads. These ads lead to a counterfeit website, "https[:]//deepseek-platform[.]com," where users are tricked into downloading a harmful file named “AILauncher1.21.exe.” This malware monitors and manipulates internet traffic, allowing attackers to intercept sensitive data. The operation is believed to involve Russian-speaking threat actors, and the malware has infected users in several countries, including Brazil, Cuba, Mexico, India, Nepal, South Africa, and Egypt. The fraudulent domain has been suspended, but the malware can evade many antivirus solutions. Users are advised to verify official domains when downloading software.

Winsage

June 11, 2025

Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws

On June 2025 Patch Tuesday, Microsoft released security updates for 66 vulnerabilities, including one actively exploited and one publicly disclosed zero-day vulnerability. The updates addressed ten "Critical" vulnerabilities, with eight being remote code execution vulnerabilities and two related to elevation of privileges. The breakdown of vulnerabilities includes 13 Elevation of Privilege, 3 Security Feature Bypass, 25 Remote Code Execution, 17 Information Disclosure, 6 Denial of Service, and 2 Spoofing vulnerabilities. The actively exploited zero-day vulnerability is CVE-2025-33053, a WebDAV Remote Code Execution vulnerability, while the publicly disclosed zero-day is CVE-2025-33073, a Windows SMB Client Elevation of Privilege vulnerability. Other companies also released updates in June 2025, including Adobe, Cisco, Fortinet, Google, HPE, Ivanti, Qualcomm, Roundcube, and SAP, addressing various vulnerabilities across their products.

Winsage

June 1, 2025

A week of hell with my Windows 11 PC really makes me appreciate the simplicity of Google’s Chromebook laptops

The author's PC experienced significant issues while trying to run DOOM: The Dark Ages, primarily due to problems with NVIDIA RTX graphics drivers on a system equipped with an Intel Core i7-14700K and NVIDIA RTX 5080. The Windows 11 Start Menu became unresponsive, leading to a complete system failure despite attempts to roll back and update drivers. The author used a USB drive with a Linux installer as a temporary solution but continued to face crashes. Attempts to reinstall Windows were complicated by an incorrectly formatted USB stick, which needed to be exFAT. Ultimately, the author resolved the issues by wiping both SSDs and creating fresh partitions. The author also noted the complexity and bloat of Windows 11 compared to the simplicity of ChromeOS, which has become a reliable alternative for tasks and gaming.

Winsage

May 30, 2025

Updaing your Windows 10 PC? I found a Linux distro that can give it 5 to 10 more years of life

FunOS is a Linux distribution focused on stability, performance, and security, built on Ubuntu LTS. It features a lightweight architecture with Joe's Window Manager, resulting in an idle RAM usage of approximately 250 MB and an installer size of 1.8 GB. The installation process takes less than five minutes, and the desktop layout resembles traditional environments. FunOS lacks a graphical user interface for the package manager and does not include an app store, requiring users to manage software via the command line. Users can install Synaptic for easier software management. FunOS is designed for older Windows 10 machines, offering a practical solution for extending their lifespan without the bloat of heavier operating systems.

Winsage

May 30, 2025

Microsoft sees Windows Update as the unified platform for all software updates

The orchestrator manages updates by scheduling them based on user activity, system performance, and power availability. It supports MSIX/APPX and Win32 applications and provides custom installer support through additional executable packages. Users receive updates via Windows notifications, and a consolidated update history is available in system settings. The orchestrator aims to deliver a consistent management experience across Windows 11 products, offering centralized logs and policy enforcement for IT teams. However, enterprises with hybrid or air-gapped systems require robust support for localized deployment. The unified platform may raise compliance concerns for organizations with strict regulatory requirements, necessitating clear accountability between independent software vendors and Microsoft, along with pre-deployment validation.

Winsage

May 29, 2025

Forced E-Waste PCs And The Case Of Windows 11’s Trusted Platform

The process of upgrading Windows operating systems was straightforward until Windows 11, which introduced a new requirement for a Trusted Platform Module (TPM), potentially rendering many capable PCs obsolete. The TPM is used for boot validation and storing biometric data, but it complicates data recovery and may lock out legitimate users. Users have found ways to bypass Windows 11's TPM and CPU restrictions, allowing installation on unsupported hardware. Microsoft’s enforcement of these requirements remains uncertain, raising concerns about system reliability and user access to updates. Many users are opting to stay on Windows 10 while advocating for continued support from developers.