The use of endpoint application allow lists impacts malware attacks against the system because it forces an attacker to modify their attack tool use. Application allow lists limit the applications that can run on a system to a pre-approved list, thereby preventing unauthorized or malicious applications from executing. This means attackers cannot use their usual tools and must find alternative methods to bypass these restrictions, typically leading to modifications in how they deploy their attacks.