all InfoSec news
Infostealer with Abnormal Certificate Being Distributed
Malware Analysis, News and Indicators - Latest topics malware.news
Recently, there has been a high distribution rate of malware using abnormal certificates.
Malware often disguise themselves with normal certificates. However, in this case, the malware entered the certificate information randomly, with the Subject Name and Issuer Name fields having unusually long strings.
As a result, the certificate information is not visible in Windows operating systems, and a specific tool or infrastructure is required to inspect the structure of these certificates.
Of course, these certificates fail in signature verification since …
case certificate certificates distributed distribution high information infostealer malware malware analysis name normal rate result strings visible windows