> Well if you've been successfully exploiting a broken certificate, and it gets busted, and you have another spare one, are you going to use it or leave it? Probably use it.
No: if you reached the target with your trojan and if your trojan is made to quietly disrupt then the last thing you want is to raise the awareness of your target by making a newer version with a newer certificate, which is then immediately recognized by all antivirus vendors, and which induces your target to recheck all their configurations and add the protections.
No: if you reached the target with your trojan and if your trojan is made to quietly disrupt then the last thing you want is to raise the awareness of your target by making a newer version with a newer certificate, which is then immediately recognized by all antivirus vendors, and which induces your target to recheck all their configurations and add the protections.