Guys according to Cisco's Talos (Security Intelligence and Research Group), the installation alone was all that required for the malicious payload to execute. See Craig Williams (Manager of the Talos – Outreach team) response to this very question I posted on September 21, 2017 @ 6:29 PM in the comments section http://blog.talosintelligence.com/2017/09/avast-distributes-malware.html