**** P.S. I just want to confirm that after almost a week no infections are detected by MSERT and Defender. So I can say the malware doesn't REGENERATE itself everyday but the server is BEING ATTACKED every single day. If you block the attack source you can survive for now.
Same problem here on a fully updated Windows 2019 running Exchange 2019 CU10.
But since this malware is related to attacks originating from China, I tried to limit access to port 443 only to domestic IP addresses on my firewall and so far infections have not come back in the last 24 hours :)
Since we have no users based abroad it worked as a feasible temporary workaround for me.
Will wait for future MS updates...