Detections
Analytics

Malicious Process Detection: Authenticode Not Verified

info Nessus Plugin ID 105045

Language:

Synopsis

Nessus found signed processes on the remote host that couldn't be verified.

Description

Running processes that are signed but couldn't be verified.

Solution

This software couldn't be verified and should be investigated as to why the trust couldn't be verified.

See Also

http://www.nessus.org/u?6a0123a1

http://www.nessus.org/u?c7777bf7

Plugin Details

Severity: Info

ID: 105045

File Name: wmi_malware_authenticode_invalid_signed_info.nbin

Version: 1.149

Type: local

Agent: windows

Family: Windows

Published: 12/6/2017

Updated: 4/15/2024

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: malscan/enabled