A new malware sample (Brazilian banking/password stealer) happens to be signed with a real and valid digital certificate issued by DigiCert. This certificate is issued to a company called Buster Paper Comercial Ltda, a Brazilian company that actually does not exist and was registered with bogus data. Last November the same kind of digitally signed Trojan was also distributed (See this ThreatExpert report for proof) Its certificate has, since then, been revoked.”]