Sign Tor Browser binaries on Windows (not just the setup executable)
Mozilla is doing the signing of Firefox binaries for a while now, beyond providing signatures for the setup executable. https://blogs.msdn.com/b/ieinternals/archive/2011/03/22/authenticode-code-signing-for-developers-for-file-downloads-building-smartscreen-application-reputation.aspx has some things to say about that.