I just came across some article and video, which explains that it would be possible to inject a payload into a signed exe or dll file without touching the certificate and make it still valid, I tested it works for the moment with the files hta injection in a dll or even exe.
but I would like to inject an exe into another exe file, without touching the certificate.
I put the links, for people who would have another idea of how to make it worked well.
that might solve the smartscreen problem, i think
https://3gstudent.github.io/隐写技巧-在PE文件的数字证书中隐藏Payload
https://coderoad.ru/23806564/Как-создать-предварительно-настроенный-установщик-MSI-или-EXE-с-действительной
but I would like to inject an exe into another exe file, without touching the certificate.
I put the links, for people who would have another idea of how to make it worked well.
that might solve the smartscreen problem, i think
https://3gstudent.github.io/隐写技巧-在PE文件的数字证书中隐藏Payload
https://coderoad.ru/23806564/Как-создать-предварительно-настроенный-установщик-MSI-или-EXE-с-действительной