App Review Huawei Qiankun Endpoint Security Quick Dance

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Content created by
cruelsister
F

ForgottenSeer 103564

This is windows 10, correct? What all default windows securities are disabled to run this test? What are the file permissions set at in order to execute the script freely on the desktop? Don't mind my questions i just want to understand the methodology a little better as to how the script is able to proceed.
 
  • Like
Reactions: Dave Russo, Nevi, roger_m and 8 others
cruelsister

cruelsister

Level 42
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,149
Ultimate Vision said:
This is windows 10, correct? What all default windows securities are disabled to run this test? What are the file permissions set at in order to execute the script freely on the desktop? Don't mind my questions i just want to understand the methodology a little better as to how the script is able to proceed.
Click to expand...
No, it's Win11 with a StartAllBack desktop (which is a recoding of explorer.exe with all the Win11 thingies disabled and the Win10 interface enabled). As to permissions, all are stock Win11 although I do have WD disabled as this test is specific for Huawei.

The lack of Scriptor detection reminds me strongly of Malwarebytes which is also oblivious to a great many.
 
Last edited:
  • Like
  • +Reputation
Reactions: Dave Russo, Nevi, roger_m and 13 others
F

ForgottenSeer 103564

cruelsister said:
No, it's Win11 with a StartAllBack desktop (which is a recoding of explorer.exe with all the Win11 thingies disabled and the Win10 interface enabled). As to permissions, all are stock Win11 although I do have WD disabled as this test is specific for Huawei.

The lack of Scriptor detection remains mt strongly of Malwarebytes which is also oblivious to a great many.
Click to expand...
Thank you, i was curious as to why windows did not react as well. So no changes were done to the script execution policy it is default, assuming the samples were coded to bypass?

I'm also assuming spell correct altered your being reminded of malwarebytes.
 
  • Like
Reactions: Nevi, roger_m, [correlate] and 5 others
ShenguiTurmi

ShenguiTurmi

Level 3
Well-known
Feb 28, 2023
128
Trident said:
Is this why WiseVector disappeared? Because this looks awfully like re-UI-ed WV.
Click to expand...
Yep Its Real!
ARp6zE7.png
This is who was previously responsible for building the ML model for WV.
 
Last edited by a moderator:
  • Like
  • Wow
  • Sad
Reactions: Dolphiner, cartaphilus, Dave Russo and 12 others
ShenguiTurmi

ShenguiTurmi

Level 3
Well-known
Feb 28, 2023
128
  • Like
Reactions: Dave Russo, roger_m, [correlate] and 1 other person
Trident

Trident

Level 28
Verified
Top Poster
Well-known
Feb 7, 2023
1,738
ShenguiTurmi said:

成长地图_华为乾坤

support.huaweicloud.com support.huaweicloud.com
And the real EDR version (for business) is on huaweicloud.
But it seems that I can only find it on the Chinese website, and I cannot find this product on the international website (tried both English and traditional Chinese).
Click to expand...
It’s probably only for the Chinese market currently. It’s not like many non-Chinese companies will rush to subscribe to their services.
 
  • Like
Reactions: simmerskool, Dave Russo, Jonny Quest and 3 others
[correlate]

[correlate]

Level 18
Top Poster
Well-known
May 4, 2019
801
ShenguiTurmi said:

成长地图_华为乾坤

support.huaweicloud.com support.huaweicloud.com
And the real EDR version (for business) is on huaweicloud.
But it seems that I can only find it on the Chinese website, and I cannot find this product on the international website (tried both English and traditional Chinese).​
Click to expand...
Yes, that's why I didn't put the direct link to Huawei
 
  • Like
Reactions: simmerskool, Dave Russo and ShenguiTurmi
cruelsister

cruelsister

Level 42
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,149
His hiring by H doesn't by extension mean great changes will be made to the product. When Sophos bought SurfRight (HMP) a while ago and hired one of the Loman boys it was hoped that Sophos Scan and Clean would be an improvement on (the occasionally adequate) HitMan. Sadly this is not the case.
 
  • Like
  • +Reputation
Reactions: cartaphilus, roger_m, simmerskool and 6 others

Similar threads

Shadowra
    • +Reputation
    • Like
    • Thanks
App Review DeepInstinct Endpoint Security v5
Replies
10
Views
667
Video Reviews - Security and Privacy
ShenguiTurmi
ShenguiTurmi
Shadowra
    • +Reputation
    • Like
    • Applause
App Review WithSecure Endpoint Security
Replies
4
Views
1,887
Video Reviews - Security and Privacy
ShenguiTurmi
ShenguiTurmi
Gandalf_The_Grey
    • Applause
    • Like
Technology A quick look back at Windows 3.1 which hit the RTM stage 32 years ago this week
Replies
0
Views
196
Technology News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top