Based on several analyses I've conducted—specifically on tria.ge, where it scored an 8/10 threat level for malware behavior—the most disturbing part is that the Microsoft digital signature remains valid. We are looking at a full cryptographic bypass.