Author Topic: A way out - Sign Code for Free with GlobalSign  (Read 2709 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
A way out - Sign Code for Free with GlobalSign
« on: March 14, 2019, 01:10:09 AM »
Remember the recent problems for Notepad+ + Now  Comes Unsigned: https://notepad-plus-plus.org/download/v7.6.4.html
And we know AV solutions have less trouble with a signed version (but supported that costed some money).

Here the problems may start, like for instance on VT: https://www.virustotal.com/#/file/3e95ce4191b73c755a3139c4df5039b255069eadda57ae827cbf843c60836157/detection BehavesLike.Win32.Dropper.wc detected by McAfee-GW-Edition
and some lesser known solutions, that flag the file as infested with HW32.Packed & malicious.46fd94 as potential malware.

There may be an Authentihash   c7736617083bf3f9fe6b30c9551cbcd5d5065baedcdca5469208d727cb45fb1c

The most important news here:
Quote
Signature Info
Signature Verification
This file is not signed
File Version Information
Copyright   Copyleft 1998-2017 by Don HO
Product   Notepad++
Description   Notepad++ : a free (GNU) source code editor
File Version   7.6.4.0

Then there is also a mutex here, detected as "oleacc-msaa-loaded mutex" for access and settings.
(info credits go to: luntrus)

Now there is this free, but unsupported alternative: 
https://www.globalsign.com/en/code-signing-certificate/code-signing-tool/

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!