The work “exploit” is used several times but none of the code seems to exploit anything. Also, “malicious code” usually has a different meaning than something that intentionally makes the program crash during the installation process.
I feel like this is only part of a wider attack - like by causing this not to download, it meant that users do some other action which opens them up to the real attack.
