The Symantec certificate is extremely suspicious, as it is listed in the 'Hacking Team' leak and it is being used to sign malware files:
wikileaks.org/hackingteam/emails/emailid/522525
https://www.hybrid-analysis.com/sample/8b39869677879158103ac56303f8466f493bc8859bcddd774ea98ac046c560f8 https://www.hybrid-analysis.com/sample/0d102760dfa18929779a80f56c2e8bb530874618e75989502c2712d36a23c75f
pedump.me/96da0a4144d620f60f608d73f9f6c8da/#signature
In fact, it comes by default on Windows 10 but it is not listed as trusted root certificate:
support.microsoft.com/es-es/kb/293781