CFG Path: its in the cheat (cfg tab > open location)
How to inject:
- Put -insecure in csgo launch options
- Use standard injection / load library its same thing (Process Hacker also uses it)
- Inject weave.dll in csgo
- Inject weave2.5.dll in csgo
- Enjoy
Status: Unknown
Unknown File, file status is unknown, use at your own risk! learn more about files status!
weave.dll Hash: 9ccf48915c9079c4ea8c4cfa812289c23a0b16ff5472aed19baec4d79435d37f
weave2.5.dll Hash: 21543cd64fb8dc91e4ec5132c7eb565cbeb892c0afcc3533036822ad169cb556
Explanation:
Files are handling weird https connections. I checked these files on VM, with few tools to monitor behavior, and changed on OS.
Files are handling weird https requests to sites:
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
These domains might be used to host payload, and execute it. After further investigation, I wasn't able to see any downloaded files, or executed files in the background. This is also important thing to mention that all these domain are not false positive results.
Extra info:
1. Cheat is very unstable, and when I was trying to inject it most of the time, it crashed. It wasn't really playable.
2. After successful injection, CSGO will pop up the default browser on your Windows with Chinese forum related to cheating, and telegram channel, fyi. (check list)
Conclusion:
I wasn't able to find any clear evidence that this free is malware, but I would not recommend using it, also it was very unstable!
Status: Unknown
Unknown File, file status is unknown, use at your own risk! learn more about files status!
weave.dll Hash: 9ccf48915c9079c4ea8c4cfa812289c23a0b16ff5472aed19baec4d79435d37f
weave2.5.dll Hash: 21543cd64fb8dc91e4ec5132c7eb565cbeb892c0afcc3533036822ad169cb556
Explanation:
Files are handling weird https connections. I checked these files on VM, with few tools to monitor behavior, and changed on OS.
Files are handling weird https requests to sites:
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
You must be registered for see links
These domains might be used to host payload, and execute it. After further investigation, I wasn't able to see any downloaded files, or executed files in the background. This is also important thing to mention that all these domain are not false positive results.
Extra info:
1. Cheat is very unstable, and when I was trying to inject it most of the time, it crashed. It wasn't really playable.
2. After successful injection, CSGO will pop up the default browser on your Windows with Chinese forum related to cheating, and telegram channel, fyi. (check list)
Conclusion:
I wasn't able to find any clear evidence that this free is malware, but I would not recommend using it, also it was very unstable!
CFG Path: its in the cheat (cfg tab > open location)
How to inject:
- Put -insecure in csgo launch options
- Use standard injection / load library its same thing (Process Hacker also uses it)
- Inject weave.dll in csgo
- Inject weave2.5.dll in csgo
- Enjoy