Advice Request Glasswire's SHA-256 hash doesn't match the one listed on their website

Please provide comments and solutions that are helpful to the author of this topic.

Trident

Trident

Level 34
Verified
Top Poster
Well-known
Feb 7, 2023
2,349
artek said:
That makes sense but I'm getting different hashes with the same browser, same machine, etc., depending on the day I've downloaded them.
Click to expand...
The ga_client_id is a variable. They use cookies to assign this value and append the data Struppigel displayed at the end of the installer. If you’ve cleared the cookies or if you are using anti-tracking software, it’s possible that the ga_client_id will change and from there, the whole hash will be different.
In addition, these cookies may only be valid for certain period of time.

I tried clearing my cookies and the variable changed, a totally different client ID was generated.
 
  • Like
  • +Reputation
Reactions: likeastar20, a090, struppigel and 5 others
F

Freki123

Level 16
Verified
Top Poster
Aug 10, 2013
753
Struppigel nailed it. They do utm tagging on the frontpage downloads and if you want the installer that matches the checksum get it from the change list page.
forum.glasswire.com

Glasswire install file not digitally signed and hash doesn't match

Hi all, The version which is available to download from the main page is patched with utm tags. The original installer is available at the change list page and its hash is equal to the one we publish. Best, Katie
forum.glasswire.com forum.glasswire.com
 
  • Like
  • +Reputation
Reactions: likeastar20, Jonny Quest, artek and 2 others
A

a090

Level 2
Mar 26, 2023
67
Can confirm. The latest installer on the GlassWire Change Log list (not the main download page) is indeed signed, and the SHA-256 hash matches up correctly.

Mystery solved. And boy was it a doozy. Those GW devs really wanted things to look a bit shady. They’re marketing a product to security conscious and IT-literate users, and expect them not to match up the hash?
 
Last edited:
  • Like
  • +Reputation
Reactions: likeastar20, simmerskool, Jonny Quest and 1 other person
A

a090

Level 2
Mar 26, 2023
67
Trident said:
Where did you see the UTM tag?
Click to expand...

IMG_7127.jpeg


From: Glasswire install file not digitally signed and hash doesn't match
Glasswire install file not digitally signed and hash doesn't match
 
  • Like
  • +Reputation
Reactions: likeastar20, simmerskool, Trident and 1 other person

Similar threads

M
    • Like
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials
Replies
0
Views
696
Microsoft Defender
Microsoft Threat Intelligence
M
oldschool
    • Like
    • +Reputation
    • Thanks
New Update Enhanced Phishing Protection in Microsoft Defender SmartScreen
Replies
11
Views
901
Windows 11
simmerskool
simmerskool
M
    • Like
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps
Replies
0
Views
411
Microsoft Defender
Microsoft Threat Intelligence
M

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top