Would someone have documentation about which bytes we can modify in a code-signed .exe without making the digital signature invalid?
In the case it's not possible, does this mean Mozilla generates a new .exe on the fly + codesigns the .exe on the fly for each new download?
Smartscreen is bypassed by using EV sig, which gives the exe an instant reputation boost.