DirtyMoe: Code Signing Certificate
released on 2021-09-20 @ 02:31:58 PM
A paper on the DirtyMoe malware looks at how Windows operates with a code signature of a driver that is signed with stolen certificates and how these are used to sign other malicious software, including other Windows drivers.