A recently discovered variant of the Zeus banking Trojan was found to use a legitimate digital signature to avoid detection from Web browsers and anti-virus systems. The variant includes the digital signature, a rootkit and a data-stealing malware component. The malware typically launches a man-in-the-browser attack when a person visits an online banking site. The rootkit prevents the malicious files from being deleted by either the computer user or AV software. The certificate is issued to “isonet ag,” Comodo said.”]
Source: https://www.csoonline.com/article/2140021/zeus-malware-found-with-valid-digital-certificate.html