CFG Path: C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\airflow
NOTE:
If you have no anti-aim for you, its just the animation thats broken.
You do have the anti aim on and working but the animations are broken!
(Cheat is unstable as fuck, but is pretty good)
Status: Unknown
Unknown File, file status is unknown, use at your own risk! learn more about files status!
Steam.dll Hash: 5fb9360cbaaa83ae164f630468b576cfd4ff012b8f49a7a1029eea1d19f68ec2
Airflow.dll Hash: f502c32c4be6d6ae6a0941529d2019f61f156191e7b6442f9295969b5124ddf0
Explanation:
Files are handling weird https connections. I checked these files on VM, with few tools to monitor behavior, and changed on OS.
Files are handling weird https requests to sites:
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
These domains might be used to host payload, and execute it. After further investigation, I wasn't able to see any downloaded files, or executed files in the background. This is also important thing to mention that all these domain are not false positive results.
Extra info:
1. Cheat is very unstable, and when I was trying to inject it most of the time, it crashed. It wasn't really playable.
2. After successful injection, CSGO will pop up the default browser on your Windows with Chinese forum related to cheating, and telegram channel, fyi. (check list)
Conclusion:
I wasn't able to find any clear evidence that this free is malware, but I would not recommend using it, also it was very unstable!
Sorry it took me so much time