19 Mar 2020 08:03 AM
Could you confirm, please that ‘certutil.exe' is related to Dynatrace?
We are running Dynatrace agent one of the customer Windows box. The same day as oneagent installation. This exe is running.
The customer received multiple malware alerts due to this exe. That's why they raised concerns with Dynatrace agent. Please help to give positive feedback to the customer.
Solved! Go to Solution.
19 Mar 2020 12:34 PM
To by honest I’ve never seen such process in context of OneAgent.
Sebastian
19 Mar 2020 01:28 PM
Certutil.exe is a utility from Microsoft that is used essentially for diagnostics. I use it a lot, as I also work with Digital Certificates. You can find more at:
https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/certutil
If it is running on a continuous basis, I would say that it might be indeed some kind of malware, masquerading as an apparent valid system process.