While ostensibly used to bypass software licensing for CAD tools, the file exhibits classic Trojan-like behavior. Reports from Joe Sandbox confirm it reads security settings from Internet Explorer and extracts computer names, posing a significant risk for data theft and persistent system compromise. (64-Bit) EDRW Patcher v1.1.exe - Hybrid Analysis
Definitely infected, hides in other progra... - Bleeping Computer Edrw Patcher V1.1.exe
: Modifies the local hosts file to alter network resolution and uses IPCONFIG to clear DNS caches, likely to block software from communicating with official license servers. While ostensibly used to bypass software licensing for
: Delete Edrw Patcher V1.1.exe if it is on your system. Do not download it from any website. Instead, seek out free, legal, and open-source alternatives for the functionality you need. Your digital security and peace of mind are priceless. - Bleeping Computer : Modifies the local hosts