We needed to modify the resources of an installer and then apply an Authenticode signature. Unfortunately, it already had a signature on it, and modifying the resources of an executable with a signature results in a corrupted signature. The Microsoft signing tools cannot recover from this situation, so:<\/p>\n
It is not possible to re-sign a file after modifying its resources.<\/b><\/p><\/blockquote>\n
However, it is possible to remove the existing signature, modify the binary, and then apply a new signature. There are two approaches (which almost certainly amount to the same thing):<\/p>\n
\nUse delcert.exe from the this XDA Forum post<\/a> (note, this is not<\/b> the same as the SMS Server 2003<\/a> tool ccmdelcert.exe, which deletes all SMS certificates on a machine).\nWrite an application which calls ImageRemoveCertificate<\/a>.\n<\/ol>\n","protected":false},"excerpt":{"rendered":"
We needed to modify the resources of an installer and then apply an Authenticode signature. Unfortunately, it already had a signature on it, and modifying the resources of an executable with a signature results in a corrupted signature. The Microsoft … Continue reading