The sensor uses the Windows WinVerifyTrust function to ask the OS if the file is signed.
Resolution
Because the sensor uses Windows WinVerifyTrust function to check the signature status of the file, it is suggested to verify the status of the file's signature/publisher using a utility such as sigcheck.exe from Sysinternals.