5

I recently installed a digitally signed program and the installer launched an internally packaged Microsoft Visual C++ redistributable installer halfway in.

I scanned the program and checked its digital signature before running it and giving it admin privileges (standard procedure on my computers - scan all programs and installers, admin privileges require valid digital signature from a reputable source).

Main problem: the digital signature was for the installer, there's no specific verification of any internal packages. I checked the redistributable packages in Control Panel -> Programs and Features and the right click options are Uninstall and Change.

Clicking on Change brings up a window with Repair/Uninstall/Close buttons.

Is there any convenient way to verify the digital signature of the Visual C++ redistributable installation? (in particular, verify that the redistributable package is authentic and hasn't been tampered with?)

The installer only has a digital signature for its publisher.

Marc.2377
  • 1,677
user1258361
  • 821

1 Answers1

5

There are two ways I can think of:

  1. Your installer must extract the Visual C++ Redistributable packages somewhere prior to installation. Usually it's put somewhere under %temp%. You can either clean that folder prior to installation, or run the installer on Sandboxie and then browsing the sandbox files to find it and check its digital signature.

  2. Install a HIPS (Host Intrusion Prevention) software, set it properly, and you'll be prompted for every package installation individually.

If you'd like to check the VC++ Redistributable DLLs already installed on your system, browse to %windir%\System32 and check the msvcpX.dll files (where X is the version number (ie msvcp140.dll for VC++ version 14.0.23918).

And kudos for keeping the good practice of checking digital signatures before granting full rights.

Marc.2377
  • 1,677