29 October 2011 19:24
I was quietly browsing the internet the other day and came across a website which offered me a ‘cracked’ version of Nuno Navigator. This struck me as interesting so I promptly downloaded a copy and got the team here to have a look at it. I was actually quite intrigued to know how it had been cracked. In some ways I was quite flattered. Nuno does not really cost very much but someone had still gone to the the trouble of hacking it.
While the file was being examined I went off to see if I could find other free downloads of cracked versions of Nuno. Turned up a couple more. Now these all came off sites that were offering an awful lot of software by way of free downloads. In fact there appeared to be most of the applications that we more usually pay for. Someone has been doing an awful lot of hacking license enforcement systems.
First result back from the labs was that the certificate on what claimed to be the Nuno installer had changed. This is pretty easy to check for yourself. Right click on the file and then select properties. On the tab labeled ‘Digital Signatures’ you should see that the file has been signed by CherSoft. These signatures are pretty reliable. If it does not say CherSoft then it has not come for us.
The particular file we were looking at what signed with the name ‘Softdeluxe’. I have no idea who this is. We are not entirely sure what the file does either. It contains a couple of GUIDs which pop up in malware reports. It also contains a link to the Nuno download page. Best bet was that it would install something that you would probably rather not have on your computer and then take you to our website or even just download the genuine Nuno installer.
The next one we found was even more exciting. This was signed by ‘EliteCom LLC’ and appeared to be a disguised installer for Filehunter-win32.exe which very much looks like malware – a Trojan of some sort. There are many warnings on the ‘net about this one.
We checked a couple more ‘free’ downloads and concluded that no-one had hacked Nuno but that there was quite a bit of social engineering going on. The main theme appears to be one of tempting you with a free/hacked/cracked download. By the time you discover you are not getting what you hoped for it has installed something malicious. They are not even picking on Nuno especially – pretty much any current software is getting the treatment.
So anyhow, if you want to download Nuno then come to our website. If you have any doubts about what you have downloaded then check the digital signature. This is what they are for.