Security researchers at Damballa Willis McDonald and Loucif Kharouni have conducted a deep analysis of the Destover malware used in the Sony Pictures hack. The experts noticed significant improvements in the variant of Destover Malware that was used to erased data across systems at Sony Pictures in November. In December security experts at Kaspersky Lab have detected a strain of. Destover that has been digitally signed with the certificates stolen during Sony attack. The new strain of malware use components to avoid detection and make hard forensic investigations.”]
Source: http://securityaffairs.co/wordpress/42194/malware/destover-malware-analysis.html