According to malware analysis reports from ANY.RUN , the executable performs the following actions:

: Modern EDR tools can flag the suspicious use of WMIC.EXE and TASKKILL.EXE that this malware relies on.

: Since this malware targets system files and startup configurations, having a clean system image is the fastest way to recover.

: This file is commonly found in "Malware Collections" on sites like GitHub. Never download or run executables from these sources unless you are in a secured, isolated virtual machine.

: The malware is known to forcibly change the desktop background image as part of its payload. System Sabotage :

Endermanch@000.exe
address718, 7th Floor, iSteel Asia No. 1, 18 Fuan Ave, Pinghu Sub-district, Longgang District, Shenzhen City,518000, Guangdong Province, China
Link:
Shenzhen B2go Technology Company Limited

Copyright © Shenzhen Quweilai Technology Company Limited All rights reserved.

Sitemap

Link

Link

    Warning: Invalid argument supplied for foreach() in /www/wwwroot/www.tvbox-manufacturer.com/wp-content/themes/baiila/footer.php on line 245

Endermanch@000.exe -

According to malware analysis reports from ANY.RUN , the executable performs the following actions:

: Modern EDR tools can flag the suspicious use of WMIC.EXE and TASKKILL.EXE that this malware relies on.

: Since this malware targets system files and startup configurations, having a clean system image is the fastest way to recover.

: This file is commonly found in "Malware Collections" on sites like GitHub. Never download or run executables from these sources unless you are in a secured, isolated virtual machine.

: The malware is known to forcibly change the desktop background image as part of its payload. System Sabotage :

©2020 Shenzhen SDMC Technology Co., Ltd.
Technical Support: Magic Lamp