This is not really a proper LOLBIN category, but is interesting for many reasons. How often do we see libraries that are written by A, sometimes even open source, but then they are signed by B?<\/p>\n\n\n\n
I mentioned 7z a while ago<\/a>, but there is more…<\/p>\n\n\n\n Examples:<\/p>\n\n\n\n Debugging Tools for Windows signed by NVIDIA Corporation:<\/p>\n\n\n\n Sample: 70FBA09DEDCDDCA02C38785071745C50CDB8C532BDB0C5A632F79EE5873C9405<\/p>\n\n\n\n OpenSSL Shared Library, signed by Intel Corporation-Mobile Wireless Group<\/p>\n\n\n\n Sample: 00471424438D68AE3F7E734808562A529D563243D156380A487C2D92D8EE4446<\/p>\n\n\n\n What are the benefits of using these?<\/p>\n\n\n\n This is not really a proper LOLBIN category, but is interesting for many reasons. How often do we see libraries that are written by A, sometimes even open source, but then they are signed by B? I mentioned 7z a … Continue reading Verified: Signed\nSigning date: 03:13 2014-07-04\nPublisher: NVIDIA Corporation\nCompany: Microsoft Corporation\nDescription: Windows Image Helper\nProduct: Debugging Tools for Windows(R)\nProd version: 6.12.0002.633\nFile version: 6.12.0002.633 (debuggers(dbg).100201-1203)\nMachineType: 32-bit<\/code><\/pre>\n\n\n\nVerified: Signed\nSigning date: 02:13 2012-09-13\nPublisher: Intel Corporation-Mobile Wireless Group\nCompany: The OpenSSL Project, http:\/\/www.openssl.org\/\nDescription: OpenSSL Shared Library\nProduct: The OpenSSL Toolkit\nProd version: 1.0.0b\nFile version: 1.0.0b\nMachineType: 64-bit<\/code><\/pre>\n\n\n\n