Reporting a certificate used by malware

BillPStudios · September 7, 2014, 1:52am

If there a procedure, link or email to report a certificate that is being used by a company in an illegal, deceptive and dangerous manner? I ran into a program that pretends to be WinPatrol but is reported by nine different AntiVirus programs as being a trojan, unwanted program and/or InstallCore injection software.
I was surprised when I saw it had a code signing certificate from Comodo purchased by Advertiso GmbH.

Bill Pytlovany
BillP Studios

Citizen_K · September 7, 2014, 11:43pm

Hello Bill. I sent a pm to Melih (CEO) and staff member Sal Amander to escalate the process.

Could you post the url to the VT report of the file?

EvanAnderson · September 12, 2014, 12:49pm

Here’s a VirusTotal report from an incident that a Customer of mine had yesterday. The Malware is signed with a COMODO certificate.

I’d love to see that cert get onto a CRL.

Citizen_K · September 12, 2014, 3:54pm

I sent a notification email to Comodo.