<![CDATA[Trustlook blog]]>https://blog.trustlook.com/https://blog.trustlook.com/favicon.pngTrustlook bloghttps://blog.trustlook.com/Ghost 2.23Thu, 09 Apr 2026 08:53:45 GMT60<![CDATA[Trustlook's Integration with OKC (OKX Chain)]]>San Jose, California, Oct. 19, 2022, Trustlook, the global leader of  AI-powered cybersecurity, today announced an integration with OKC (OKX Chain) an EVM-compatible L1 built on Cosmos with a focus on true interoperability (IBC) and maximized performance. Trustlook will provide their extensive portfolio of blockchain security products to OKC, which

]]>https://blog.trustlook.com/trustlook-integration-with-okc/635062706a27ce2bf459caa9Wed, 19 Oct 2022 20:54:31 GMTSan Jose, California, Oct. 19, 2022, Trustlook, the global leader of  AI-powered cybersecurity, today announced an integration with OKC (OKX Chain) an EVM-compatible L1 built on Cosmos with a focus on true interoperability (IBC) and maximized performance. Trustlook will provide their extensive portfolio of blockchain security products to OKC, which will  allow them to create a safer web3 experience for their users.

OKC (OKX Chain) is an EVM-compatible L1 built on Cosmos with a focus on true interoperability (IBC) and maximized performance. At high scalability, developers can build and scale with low gas fees. The OKC ecosystem and infrastructure, including the all-in-one multi-chain Web3 interface, enables a seamless experience for both developers and users.

Find out more about us at https://okx.com/okc.

]]><![CDATA[VirusTotal APK 病毒检测统计 20220101-20220831]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20220101_20220831.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-202201-202208/632269d56a27ce2bf459ca93Wed, 14 Sep 2022 23:56:08 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20220101_20220831.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
K7GW 99.61% 0.19% 347789 4780 2506813 1374
ESET-NOD32 99.47% 0.09% 347327 2283 2509310 1836
Fortinet 98.76% 0.13% 344834 3335 2508258 4329
Trustlook 98.49% 0.02% 343874 400 2511193 5289
Avira 98.46% 0.00% 343773 118 2511475 5390
AhnLab-V3 96.45% 0.01% 336760 281 2511312 12403
Kaspersky 95.67% 0.02% 334061 441 2511152 15102
Avast-Mobile 90.59% 0.89% 316324 22373 2489220 32839
Ikarus 90.39% 0.14% 315599 3455 2508138 33564
Microsoft 89.95% 0.02% 314082 478 2511115 35081
McAfee 89.17% 0.03% 311346 701 2510892 37817
Sophos 87.92% 0.01% 306982 268 2511325 42181
DrWeb 86.38% 0.09% 301601 2277 2509316 47562
Tencent 86.17% 0.12% 300868 2960 2508633 48295
McAfee-GW-Edition 84.37% 0.07% 294604 1703 2509890 54559
CAT-QuickHeal 83.07% 0.02% 290046 533 2511060 59117
SymantecMobileInsight 80.29% 2.08% 280327 52256 2459337 68836
Alibaba 74.36% 0.01% 259624 281 2511312 89539
Symantec 66.21% 0.01% 231184 163 2511430 117979
MAX 62.09% 0.00% 216791 36 2511557 132372
NANO-Antivirus 61.75% 0.03% 215604 824 2510769 133559
Cyren 58.51% 0.00% 204286 116 2511477 144877
AVG 54.84% 0.02% 191491 578 2511015 157672
Avast 54.80% 0.02% 191337 576 2511017 157826
Antiy-AVL 54.61% 0.14% 190680 3617 2507976 158483
ZoneAlarm 54.40% 0.01% 189946 353 2511240 159217
Comodo 24.09% 0.05% 84102 1316 2510277 265061
Zillya 22.71% 0.08% 79284 2106 2509487 269879
F-Secure 15.71% 0.00% 54868 30 2511563 294295
Rising 15.28% 0.02% 53335 441 2511152 295828
GData 14.34% 0.00% 50078 23 2511570 299085
Jiangmin 12.91% 0.36% 45086 8967 2502626 304077
Kingsoft 12.83% 0.03% 44807 665 2510928 304356
BitDefender 10.99% 0.00% 38388 15 2511578 310775
Emsisoft 10.69% 0.00% 37333 14 2511579 311830
ClamAV 10.07% 0.23% 35167 5817 2505776 313996
TrendMicro 8.06% 0.02% 28147 442 2511151 321016
TrendMicro-HouseCall 7.03% 0.01% 24543 214 2511379 324620
Arcabit 6.40% 0.00% 22340 42 2511551 326823
MicroWorld-eScan 5.70% 0.00% 19897 12 2511581 329266
Yandex 5.67% 0.00% 19811 56 2511537 329352
VIPRE 4.74% 0.00% 16557 12 2511581 332606
VBA32 1.46% 0.02% 5099 466 2511127 344064
Ad-Aware 1.23% 0.00% 4308 9 2511584 344855
Panda 1.03% 0.00% 3592 25 2511568 345571
SentinelOne 0.49% 0.00% 1708 56 2511537 347455
Baidu 0.21% 0.01% 734 249 2511344 348429
ViRobot 0.14% 0.00% 500 5 2511588 348663
ALYac 0.07% 0.00% 244 5 2511588 348919
Malwarebytes 0.05% 0.00% 188 13 2511580 348975
Zoner 0.05% 0.00% 171 32 2511561 348992
K7AntiVirus 0.03% 0.00% 117 0 2511593 349046
SUPERAntiSpyware 0.00% 0.00% 10 0 2511593 349153
CMC 0.00% 0.00% 7 0 2511593 349156
Bkav 0.00% 0.03% 1 809 2510784 349162
TotalDefense 0.00% 0.00% 0 0 2511593 349163
nProtect 0.00% 0.00% 0 0 2511593 349163
CrowdStrike 0.00% 0.00% 0 0 2511593 349163
TheHacker 0.00% 0.00% 0 0 2511593 349163
eScan 0.00% 0.00% 0 0 2511593 349163
Babable 0.00% 0.00% 0 0 2511593 349163
Invincea 0.00% 0.00% 0 0 2511593 349163
F-Prot 0.00% 0.00% 0 0 2511593 349163
Endgame 0.00% 0.00% 0 0 2511593 349163
Webroot 0.00% 0.00% 0 0 2511593 349163
AegisLab 0.00% 0.00% 0 0 2511593 349163
AVware 0.00% 0.00% 0 0 2511593 349163
Qihoo-360 0.00% 0.00% 0 0 2511593 349163
TotalGoodware 2511593
TotalMalware 349163
TotalSample 2860756

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK Malware Detection Data 20220101-20220831]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-202201-202208/6322693f6a27ce2bf459ca82Wed, 14 Sep 2022 23:54:30 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

We publish the detection results and zip the CSV files to AWS S3. For this test, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20220101_20220831.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
K7GW 99.61% 0.19% 347789 4780 2506813 1374
ESET-NOD32 99.47% 0.09% 347327 2283 2509310 1836
Fortinet 98.76% 0.13% 344834 3335 2508258 4329
Trustlook 98.49% 0.02% 343874 400 2511193 5289
Avira 98.46% 0.00% 343773 118 2511475 5390
AhnLab-V3 96.45% 0.01% 336760 281 2511312 12403
Kaspersky 95.67% 0.02% 334061 441 2511152 15102
Avast-Mobile 90.59% 0.89% 316324 22373 2489220 32839
Ikarus 90.39% 0.14% 315599 3455 2508138 33564
Microsoft 89.95% 0.02% 314082 478 2511115 35081
McAfee 89.17% 0.03% 311346 701 2510892 37817
Sophos 87.92% 0.01% 306982 268 2511325 42181
DrWeb 86.38% 0.09% 301601 2277 2509316 47562
Tencent 86.17% 0.12% 300868 2960 2508633 48295
McAfee-GW-Edition 84.37% 0.07% 294604 1703 2509890 54559
CAT-QuickHeal 83.07% 0.02% 290046 533 2511060 59117
SymantecMobileInsight 80.29% 2.08% 280327 52256 2459337 68836
Alibaba 74.36% 0.01% 259624 281 2511312 89539
Symantec 66.21% 0.01% 231184 163 2511430 117979
MAX 62.09% 0.00% 216791 36 2511557 132372
NANO-Antivirus 61.75% 0.03% 215604 824 2510769 133559
Cyren 58.51% 0.00% 204286 116 2511477 144877
AVG 54.84% 0.02% 191491 578 2511015 157672
Avast 54.80% 0.02% 191337 576 2511017 157826
Antiy-AVL 54.61% 0.14% 190680 3617 2507976 158483
ZoneAlarm 54.40% 0.01% 189946 353 2511240 159217
Comodo 24.09% 0.05% 84102 1316 2510277 265061
Zillya 22.71% 0.08% 79284 2106 2509487 269879
F-Secure 15.71% 0.00% 54868 30 2511563 294295
Rising 15.28% 0.02% 53335 441 2511152 295828
GData 14.34% 0.00% 50078 23 2511570 299085
Jiangmin 12.91% 0.36% 45086 8967 2502626 304077
Kingsoft 12.83% 0.03% 44807 665 2510928 304356
BitDefender 10.99% 0.00% 38388 15 2511578 310775
Emsisoft 10.69% 0.00% 37333 14 2511579 311830
ClamAV 10.07% 0.23% 35167 5817 2505776 313996
TrendMicro 8.06% 0.02% 28147 442 2511151 321016
TrendMicro-HouseCall 7.03% 0.01% 24543 214 2511379 324620
Arcabit 6.40% 0.00% 22340 42 2511551 326823
MicroWorld-eScan 5.70% 0.00% 19897 12 2511581 329266
Yandex 5.67% 0.00% 19811 56 2511537 329352
VIPRE 4.74% 0.00% 16557 12 2511581 332606
VBA32 1.46% 0.02% 5099 466 2511127 344064
Ad-Aware 1.23% 0.00% 4308 9 2511584 344855
Panda 1.03% 0.00% 3592 25 2511568 345571
SentinelOne 0.49% 0.00% 1708 56 2511537 347455
Baidu 0.21% 0.01% 734 249 2511344 348429
ViRobot 0.14% 0.00% 500 5 2511588 348663
ALYac 0.07% 0.00% 244 5 2511588 348919
Malwarebytes 0.05% 0.00% 188 13 2511580 348975
Zoner 0.05% 0.00% 171 32 2511561 348992
K7AntiVirus 0.03% 0.00% 117 0 2511593 349046
SUPERAntiSpyware 0.00% 0.00% 10 0 2511593 349153
CMC 0.00% 0.00% 7 0 2511593 349156
Bkav 0.00% 0.03% 1 809 2510784 349162
TotalDefense 0.00% 0.00% 0 0 2511593 349163
nProtect 0.00% 0.00% 0 0 2511593 349163
CrowdStrike 0.00% 0.00% 0 0 2511593 349163
TheHacker 0.00% 0.00% 0 0 2511593 349163
eScan 0.00% 0.00% 0 0 2511593 349163
Babable 0.00% 0.00% 0 0 2511593 349163
Invincea 0.00% 0.00% 0 0 2511593 349163
F-Prot 0.00% 0.00% 0 0 2511593 349163
Endgame 0.00% 0.00% 0 0 2511593 349163
Webroot 0.00% 0.00% 0 0 2511593 349163
AegisLab 0.00% 0.00% 0 0 2511593 349163
AVware 0.00% 0.00% 0 0 2511593 349163
Qihoo-360 0.00% 0.00% 0 0 2511593 349163
TotalGoodware 2511593
TotalMalware 349163
TotalSample 2860756

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK Malware Detection Data 2021-11]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-2021-11/61a9ac4641be69042719461eFri, 03 Dec 2021 05:34:22 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a monthly basis, we publish the detection results and zip the CSV files to AWS S3. For this month, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211101_20211130.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
Fortinet 99.73% 0.05% 17964 154 317562 48
ESET-NOD32 99.66% 0.02% 17951 53 317663 61
K7GW 99.01% 0.05% 17834 171 317545 178
Avast-Mobile 98.92% 0.38% 17818 1207 316509 194
Avira 98.63% 0.00% 17766 9 317707 246
DrWeb 97.72% 0.05% 17602 165 317551 410
Ikarus 95.35% 0.03% 17175 83 317633 837
AhnLab-V3 94.96% 0.01% 17104 38 317678 908
McAfee 93.86% 0.01% 16906 18 317698 1106
Trustlook 93.69% 0.02% 16876 66 317650 1136
CAT-QuickHeal 93.65% 0.01% 16868 22 317694 1144
Kaspersky 92.99% 0.01% 16749 17 317699 1263
Microsoft 91.13% 0.02% 16414 61 317655 1598
McAfee-GW-Edition 86.62% 0.01% 15602 39 317677 2410
SymantecMobileInsight 80.61% 1.55% 14519 4938 312778 3493
Tencent 78.95% 0.08% 14220 245 317471 3792
Sophos 78.53% 0.01% 14145 26 317690 3867
Symantec 75.87% 0.01% 13665 18 317698 4347
NANO-Antivirus 64.73% 0.01% 11660 46 317670 6352
Alibaba 64.50% 0.00% 11617 7 317709 6395
Cyren 61.87% 0.01% 11144 23 317693 6868
Antiy-AVL 59.12% 0.08% 10649 245 317471 7363
AVG 52.25% 0.02% 9412 53 317663 8600
Avast 52.17% 0.02% 9396 53 317663 8616
MAX 48.91% 0.00% 8809 1 317715 9203
Comodo 33.40% 0.05% 6016 164 317552 11996
Zillya 22.51% 0.05% 4054 169 317547 13958
Jiangmin 14.43% 0.47% 2599 1502 316214 15413
Kingsoft 14.35% 0.01% 2585 43 317673 15427
ClamAV 12.54% 0.09% 2258 273 317443 15754
GData 12.22% 0.00% 2201 0 317716 15811
BitDefender 11.11% 0.00% 2002 0 317716 16010
Emsisoft 10.90% 0.00% 1963 0 317716 16049
Yandex 7.80% 0.01% 1405 17 317699 16607
F-Secure 7.60% 0.00% 1369 1 317715 16643
ZoneAlarm 7.47% 0.00% 1346 3 317713 16666
Arcabit 6.16% 0.00% 1110 1 317715 16902
MicroWorld-eScan 6.12% 0.00% 1103 0 317716 16909
Rising 5.06% 0.01% 911 16 317700 17101
TrendMicro-HouseCall 3.09% 0.01% 556 41 317675 17456
TrendMicro 2.65% 0.02% 477 58 317658 17535
Ad-Aware 2.17% 0.00% 390 0 317716 17622
Zoner 1.47% 0.00% 264 15 317701 17748
VBA32 0.82% 0.01% 148 30 317686 17864
Panda 0.52% 0.00% 94 4 317712 17918
Baidu 0.52% 0.00% 93 15 317701 17919
SentinelOne 0.32% 0.00% 57 5 317711 17955
ViRobot 0.30% 0.00% 54 2 317714 17958
Malwarebytes 0.10% 0.00% 18 1 317715 17994
ALYac 0.08% 0.00% 14 0 317716 17998
K7AntiVirus 0.04% 0.00% 7 0 317716 18005
VIPRE 0.01% 0.00% 2 0 317716 18010
CMC 0.01% 0.00% 1 0 317716 18011
SUPERAntiSpyware 0.01% 0.00% 1 0 317716 18011
Bkav 0.00% 0.00% 0 0 317716 18012
TotalDefense 0.00% 0.00% 0 0 317716 18012
nProtect 0.00% 0.00% 0 0 317716 18012
CrowdStrike 0.00% 0.00% 0 0 317716 18012
TheHacker 0.00% 0.00% 0 0 317716 18012
eScan 0.00% 0.00% 0 0 317716 18012
Babable 0.00% 0.00% 0 0 317716 18012
Invincea 0.00% 0.00% 0 0 317716 18012
F-Prot 0.00% 0.00% 0 0 317716 18012
Endgame 0.00% 0.00% 0 0 317716 18012
Webroot 0.00% 0.00% 0 0 317716 18012
AegisLab 0.00% 0.00% 0 0 317716 18012
AVware 0.00% 0.00% 0 0 317716 18012
Qihoo-360 0.00% 0.00% 0 0 317716 18012
TotalGoodware 317716
TotalMalware 18012
TotalSample 335728

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK 病毒检测统计 2021-11]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211101_20211130.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-2021-11/61a9ac0e41be690427194612Fri, 03 Dec 2021 05:33:42 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211101_20211130.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
Fortinet 99.73% 0.05% 17964 154 317562 48
ESET-NOD32 99.66% 0.02% 17951 53 317663 61
K7GW 99.01% 0.05% 17834 171 317545 178
Avast-Mobile 98.92% 0.38% 17818 1207 316509 194
Avira 98.63% 0.00% 17766 9 317707 246
DrWeb 97.72% 0.05% 17602 165 317551 410
Ikarus 95.35% 0.03% 17175 83 317633 837
AhnLab-V3 94.96% 0.01% 17104 38 317678 908
McAfee 93.86% 0.01% 16906 18 317698 1106
Trustlook 93.69% 0.02% 16876 66 317650 1136
CAT-QuickHeal 93.65% 0.01% 16868 22 317694 1144
Kaspersky 92.99% 0.01% 16749 17 317699 1263
Microsoft 91.13% 0.02% 16414 61 317655 1598
McAfee-GW-Edition 86.62% 0.01% 15602 39 317677 2410
SymantecMobileInsight 80.61% 1.55% 14519 4938 312778 3493
Tencent 78.95% 0.08% 14220 245 317471 3792
Sophos 78.53% 0.01% 14145 26 317690 3867
Symantec 75.87% 0.01% 13665 18 317698 4347
NANO-Antivirus 64.73% 0.01% 11660 46 317670 6352
Alibaba 64.50% 0.00% 11617 7 317709 6395
Cyren 61.87% 0.01% 11144 23 317693 6868
Antiy-AVL 59.12% 0.08% 10649 245 317471 7363
AVG 52.25% 0.02% 9412 53 317663 8600
Avast 52.17% 0.02% 9396 53 317663 8616
MAX 48.91% 0.00% 8809 1 317715 9203
Comodo 33.40% 0.05% 6016 164 317552 11996
Zillya 22.51% 0.05% 4054 169 317547 13958
Jiangmin 14.43% 0.47% 2599 1502 316214 15413
Kingsoft 14.35% 0.01% 2585 43 317673 15427
ClamAV 12.54% 0.09% 2258 273 317443 15754
GData 12.22% 0.00% 2201 0 317716 15811
BitDefender 11.11% 0.00% 2002 0 317716 16010
Emsisoft 10.90% 0.00% 1963 0 317716 16049
Yandex 7.80% 0.01% 1405 17 317699 16607
F-Secure 7.60% 0.00% 1369 1 317715 16643
ZoneAlarm 7.47% 0.00% 1346 3 317713 16666
Arcabit 6.16% 0.00% 1110 1 317715 16902
MicroWorld-eScan 6.12% 0.00% 1103 0 317716 16909
Rising 5.06% 0.01% 911 16 317700 17101
TrendMicro-HouseCall 3.09% 0.01% 556 41 317675 17456
TrendMicro 2.65% 0.02% 477 58 317658 17535
Ad-Aware 2.17% 0.00% 390 0 317716 17622
Zoner 1.47% 0.00% 264 15 317701 17748
VBA32 0.82% 0.01% 148 30 317686 17864
Panda 0.52% 0.00% 94 4 317712 17918
Baidu 0.52% 0.00% 93 15 317701 17919
SentinelOne 0.32% 0.00% 57 5 317711 17955
ViRobot 0.30% 0.00% 54 2 317714 17958
Malwarebytes 0.10% 0.00% 18 1 317715 17994
ALYac 0.08% 0.00% 14 0 317716 17998
K7AntiVirus 0.04% 0.00% 7 0 317716 18005
VIPRE 0.01% 0.00% 2 0 317716 18010
CMC 0.01% 0.00% 1 0 317716 18011
SUPERAntiSpyware 0.01% 0.00% 1 0 317716 18011
Bkav 0.00% 0.00% 0 0 317716 18012
TotalDefense 0.00% 0.00% 0 0 317716 18012
nProtect 0.00% 0.00% 0 0 317716 18012
CrowdStrike 0.00% 0.00% 0 0 317716 18012
TheHacker 0.00% 0.00% 0 0 317716 18012
eScan 0.00% 0.00% 0 0 317716 18012
Babable 0.00% 0.00% 0 0 317716 18012
Invincea 0.00% 0.00% 0 0 317716 18012
F-Prot 0.00% 0.00% 0 0 317716 18012
Endgame 0.00% 0.00% 0 0 317716 18012
Webroot 0.00% 0.00% 0 0 317716 18012
AegisLab 0.00% 0.00% 0 0 317716 18012
AVware 0.00% 0.00% 0 0 317716 18012
Qihoo-360 0.00% 0.00% 0 0 317716 18012
TotalGoodware 317716
TotalMalware 18012
TotalSample 335728

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK 病毒检测统计 2021-10]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211001_20211031.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-2021-10/61a5a5ce41be690427194604Wed, 01 Dec 2021 04:22:00 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211001_20211031.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
ESET-NOD32 99.63% 0.04% 7517 66 165131 28
Fortinet 99.48% 0.10% 7506 159 165038 39
K7GW 99.44% 0.10% 7503 164 165033 42
Avast-Mobile 98.91% 0.82% 7463 1352 163845 82
DrWeb 98.22% 0.09% 7411 142 165055 134
Ikarus 98.14% 0.06% 7405 101 165096 140
Avira 97.80% 0.00% 7379 4 165193 166
CAT-QuickHeal 96.39% 0.05% 7273 85 165112 272
AhnLab-V3 94.98% 0.02% 7166 29 165168 379
Kaspersky 94.13% 0.01% 7102 20 165177 443
Trustlook 93.76% 0.00% 7074 7 165190 471
McAfee 92.60% 0.02% 6987 34 165163 558
Microsoft 87.28% 0.03% 6585 52 165145 960
McAfee-GW-Edition 84.96% 0.02% 6410 35 165162 1135
Sophos 83.46% 0.02% 6297 27 165170 1248
NANO-Antivirus 78.52% 0.02% 5924 41 165156 1621
Antiy-AVL 74.16% 0.10% 5595 173 165024 1950
SymantecMobileInsight 74.04% 2.22% 5586 3675 161522 1959
Tencent 69.65% 0.11% 5255 184 165013 2290
Cyren 64.15% 0.02% 4840 30 165167 2705
Symantec 57.99% 0.00% 4375 3 165194 3170
Alibaba 56.30% 0.00% 4248 6 165191 3297
AVG 55.26% 0.01% 4169 22 165175 3376
Avast 55.14% 0.01% 4160 22 165175 3385
MAX 52.72% 0.00% 3978 0 165197 3567
ZoneAlarm 48.32% 0.01% 3646 19 165178 3899
Comodo 42.32% 0.07% 3193 120 165077 4352
Zillya 30.88% 0.06% 2330 93 165104 5215
ClamAV 17.81% 0.07% 1344 113 165084 6201
Jiangmin 15.79% 0.43% 1191 713 164484 6354
Kingsoft 15.40% 0.01% 1162 24 165173 6383
GData 15.06% 0.00% 1136 1 165196 6409
BitDefender 14.25% 0.00% 1075 0 165197 6470
Emsisoft 14.12% 0.00% 1065 0 165197 6480
Yandex 10.40% 0.00% 785 7 165190 6760
F-Secure 9.94% 0.00% 750 1 165196 6795
Arcabit 8.56% 0.00% 646 1 165196 6899
MicroWorld-eScan 8.40% 0.00% 634 0 165197 6911
Zoner 7.20% 0.00% 543 4 165193 7002
Rising 6.03% 0.01% 455 10 165187 7090
TrendMicro-HouseCall 5.99% 0.01% 452 21 165176 7093
TrendMicro 4.53% 0.02% 342 34 165163 7203
Ad-Aware 2.92% 0.00% 220 0 165197 7325
VBA32 1.02% 0.01% 77 9 165188 7468
Panda 0.34% 0.00% 26 0 165197 7519
Baidu 0.28% 0.01% 21 15 165182 7524
SentinelOne 0.28% 0.00% 21 0 165197 7524
ViRobot 0.19% 0.00% 14 0 165197 7531
Malwarebytes 0.05% 0.00% 4 0 165197 7541
ALYac 0.04% 0.00% 3 0 165197 7542
SUPERAntiSpyware 0.04% 0.00% 3 0 165197 7542
VIPRE 0.04% 0.00% 3 0 165197 7542
CMC 0.03% 0.00% 2 0 165197 7543
K7AntiVirus 0.03% 0.00% 2 0 165197 7543
Bkav 0.00% 0.00% 0 0 165197 7545
TotalDefense 0.00% 0.00% 0 0 165197 7545
nProtect 0.00% 0.00% 0 0 165197 7545
CrowdStrike 0.00% 0.00% 0 0 165197 7545
TheHacker 0.00% 0.00% 0 0 165197 7545
eScan 0.00% 0.00% 0 0 165197 7545
Babable 0.00% 0.00% 0 0 165197 7545
Invincea 0.00% 0.00% 0 0 165197 7545
F-Prot 0.00% 0.00% 0 0 165197 7545
Endgame 0.00% 0.00% 0 0 165197 7545
Webroot 0.00% 0.00% 0 0 165197 7545
AegisLab 0.00% 0.00% 0 0 165197 7545
AVware 0.00% 0.00% 0 0 165197 7545
Qihoo-360 0.00% 0.00% 0 0 165197 7545
TotalGoodware 165197
TotalMalware 7545
TotalSample 172742

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK Malware Detection Data 2021-10]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-2021-10/61a5a52941be6904271945f7Wed, 01 Dec 2021 04:21:00 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a monthly basis, we publish the detection results and zip the CSV files to AWS S3. For this month, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20211001_20211031.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
ESET-NOD32 99.63% 0.04% 7517 66 165131 28
Fortinet 99.48% 0.10% 7506 159 165038 39
K7GW 99.44% 0.10% 7503 164 165033 42
Avast-Mobile 98.91% 0.82% 7463 1352 163845 82
DrWeb 98.22% 0.09% 7411 142 165055 134
Ikarus 98.14% 0.06% 7405 101 165096 140
Avira 97.80% 0.00% 7379 4 165193 166
CAT-QuickHeal 96.39% 0.05% 7273 85 165112 272
AhnLab-V3 94.98% 0.02% 7166 29 165168 379
Kaspersky 94.13% 0.01% 7102 20 165177 443
Trustlook 93.76% 0.00% 7074 7 165190 471
McAfee 92.60% 0.02% 6987 34 165163 558
Microsoft 87.28% 0.03% 6585 52 165145 960
McAfee-GW-Edition 84.96% 0.02% 6410 35 165162 1135
Sophos 83.46% 0.02% 6297 27 165170 1248
NANO-Antivirus 78.52% 0.02% 5924 41 165156 1621
Antiy-AVL 74.16% 0.10% 5595 173 165024 1950
SymantecMobileInsight 74.04% 2.22% 5586 3675 161522 1959
Tencent 69.65% 0.11% 5255 184 165013 2290
Cyren 64.15% 0.02% 4840 30 165167 2705
Symantec 57.99% 0.00% 4375 3 165194 3170
Alibaba 56.30% 0.00% 4248 6 165191 3297
AVG 55.26% 0.01% 4169 22 165175 3376
Avast 55.14% 0.01% 4160 22 165175 3385
MAX 52.72% 0.00% 3978 0 165197 3567
ZoneAlarm 48.32% 0.01% 3646 19 165178 3899
Comodo 42.32% 0.07% 3193 120 165077 4352
Zillya 30.88% 0.06% 2330 93 165104 5215
ClamAV 17.81% 0.07% 1344 113 165084 6201
Jiangmin 15.79% 0.43% 1191 713 164484 6354
Kingsoft 15.40% 0.01% 1162 24 165173 6383
GData 15.06% 0.00% 1136 1 165196 6409
BitDefender 14.25% 0.00% 1075 0 165197 6470
Emsisoft 14.12% 0.00% 1065 0 165197 6480
Yandex 10.40% 0.00% 785 7 165190 6760
F-Secure 9.94% 0.00% 750 1 165196 6795
Arcabit 8.56% 0.00% 646 1 165196 6899
MicroWorld-eScan 8.40% 0.00% 634 0 165197 6911
Zoner 7.20% 0.00% 543 4 165193 7002
Rising 6.03% 0.01% 455 10 165187 7090
TrendMicro-HouseCall 5.99% 0.01% 452 21 165176 7093
TrendMicro 4.53% 0.02% 342 34 165163 7203
Ad-Aware 2.92% 0.00% 220 0 165197 7325
VBA32 1.02% 0.01% 77 9 165188 7468
Panda 0.34% 0.00% 26 0 165197 7519
Baidu 0.28% 0.01% 21 15 165182 7524
SentinelOne 0.28% 0.00% 21 0 165197 7524
ViRobot 0.19% 0.00% 14 0 165197 7531
Malwarebytes 0.05% 0.00% 4 0 165197 7541
ALYac 0.04% 0.00% 3 0 165197 7542
SUPERAntiSpyware 0.04% 0.00% 3 0 165197 7542
VIPRE 0.04% 0.00% 3 0 165197 7542
CMC 0.03% 0.00% 2 0 165197 7543
K7AntiVirus 0.03% 0.00% 2 0 165197 7543
Bkav 0.00% 0.00% 0 0 165197 7545
TotalDefense 0.00% 0.00% 0 0 165197 7545
nProtect 0.00% 0.00% 0 0 165197 7545
CrowdStrike 0.00% 0.00% 0 0 165197 7545
TheHacker 0.00% 0.00% 0 0 165197 7545
eScan 0.00% 0.00% 0 0 165197 7545
Babable 0.00% 0.00% 0 0 165197 7545
Invincea 0.00% 0.00% 0 0 165197 7545
F-Prot 0.00% 0.00% 0 0 165197 7545
Endgame 0.00% 0.00% 0 0 165197 7545
Webroot 0.00% 0.00% 0 0 165197 7545
AegisLab 0.00% 0.00% 0 0 165197 7545
AVware 0.00% 0.00% 0 0 165197 7545
Qihoo-360 0.00% 0.00% 0 0 165197 7545
TotalGoodware 165197
TotalMalware 7545
TotalSample 172742

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK Malware Detection Data 2021-09]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-2021-09/61a5a4f641be6904271945eaTue, 30 Nov 2021 04:14:14 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a monthly basis, we publish the detection results and zip the CSV files to AWS S3. For this month, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210901_20210930.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
K7GW 99.73% 0.10% 10871 207 205774 29
ESET-NOD32 99.65% 0.03% 10862 54 205927 38
Fortinet 99.61% 0.09% 10858 180 205801 42
Avast-Mobile 98.89% 0.72% 10779 1484 204497 121
Ikarus 98.28% 0.06% 10712 132 205849 188
DrWeb 98.07% 0.09% 10690 182 205799 210
Avira 98.06% 0.01% 10688 14 205967 212
Trustlook 96.25% 0.00% 10491 10 205971 409
Kaspersky 94.47% 0.02% 10297 31 205950 603
McAfee 94.14% 0.03% 10261 54 205927 639
AhnLab-V3 93.65% 0.02% 10208 35 205946 692
CAT-QuickHeal 92.50% 0.05% 10082 104 205877 818
Microsoft 90.21% 0.02% 9833 44 205937 1067
McAfee-GW-Edition 86.45% 0.03% 9423 56 205925 1477
Sophos 80.59% 0.01% 8784 25 205956 2116
NANO-Antivirus 76.53% 0.02% 8342 43 205938 2558
SymantecMobileInsight 73.94% 2.69% 8059 5536 200445 2841
Cyren 68.58% 0.02% 7475 41 205940 3425
Tencent 67.96% 0.12% 7408 251 205730 3492
Symantec 66.94% 0.00% 7296 4 205977 3604
Alibaba 63.95% 0.00% 6971 8 205973 3929
Antiy-AVL 63.48% 0.09% 6919 185 205796 3981
MAX 55.36% 0.00% 6034 4 205977 4866
ZoneAlarm 48.06% 0.02% 5239 36 205945 5661
AVG 42.71% 0.02% 4655 31 205950 6245
Avast 42.56% 0.02% 4639 31 205950 6261
Comodo 28.25% 0.09% 3079 186 205795 7821
Zillya 26.37% 0.08% 2874 157 205824 8026
GData 16.16% 0.00% 1761 1 205980 9139
Yandex 14.40% 0.00% 1570 4 205977 9330
ClamAV 14.33% 0.08% 1562 174 205807 9338
BitDefender 14.19% 0.00% 1547 1 205980 9353
Emsisoft 14.02% 0.00% 1528 0 205981 9372
Jiangmin 11.43% 0.48% 1246 991 204990 9654
Kingsoft 9.48% 0.01% 1033 27 205954 9867
MicroWorld-eScan 9.45% 0.00% 1030 0 205981 9870
F-Secure 9.39% 0.00% 1024 1 205980 9876
Arcabit 8.06% 0.00% 879 1 205980 10021
Ad-Aware 4.09% 0.00% 446 0 205981 10454
Zoner 4.08% 0.00% 445 8 205973 10455
TrendMicro-HouseCall 3.80% 0.02% 414 36 205945 10486
TrendMicro 3.25% 0.03% 354 65 205916 10546
Rising 1.98% 0.01% 216 14 205967 10684
VBA32 0.94% 0.01% 103 28 205953 10797
Panda 0.58% 0.00% 63 1 205980 10837
Baidu 0.30% 0.01% 33 27 205954 10867
ViRobot 0.26% 0.00% 28 1 205980 10872
SentinelOne 0.08% 0.00% 9 0 205981 10891
VIPRE 0.04% 0.00% 4 0 205981 10896
K7AntiVirus 0.03% 0.00% 3 0 205981 10897
Malwarebytes 0.02% 0.00% 2 1 205980 10898
SUPERAntiSpyware 0.02% 0.00% 2 0 205981 10898
ALYac 0.01% 0.00% 1 0 205981 10899
Bkav 0.00% 0.00% 0 0 205981 10900
TotalDefense 0.00% 0.00% 0 0 205981 10900
nProtect 0.00% 0.00% 0 0 205981 10900
CMC 0.00% 0.00% 0 0 205981 10900
CrowdStrike 0.00% 0.00% 0 0 205981 10900
TheHacker 0.00% 0.00% 0 0 205981 10900
eScan 0.00% 0.00% 0 0 205981 10900
Babable 0.00% 0.00% 0 0 205981 10900
Invincea 0.00% 0.00% 0 0 205981 10900
F-Prot 0.00% 0.00% 0 0 205981 10900
Endgame 0.00% 0.00% 0 0 205981 10900
Webroot 0.00% 0.00% 0 0 205981 10900
AegisLab 0.00% 0.00% 0 0 205981 10900
AVware 0.00% 0.00% 0 0 205981 10900
Qihoo-360 0.00% 0.00% 0 0 205981 10900
TotalGoodware 205981
TotalMalware 10900
TotalSample 216881

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK 病毒检测统计 2021-09]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210901_20210930.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-2021-09/61a5a4bd41be6904271945deTue, 30 Nov 2021 04:13:27 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210901_20210930.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
K7GW 99.73% 0.10% 10871 207 205774 29
ESET-NOD32 99.65% 0.03% 10862 54 205927 38
Fortinet 99.61% 0.09% 10858 180 205801 42
Avast-Mobile 98.89% 0.72% 10779 1484 204497 121
Ikarus 98.28% 0.06% 10712 132 205849 188
DrWeb 98.07% 0.09% 10690 182 205799 210
Avira 98.06% 0.01% 10688 14 205967 212
Trustlook 96.25% 0.00% 10491 10 205971 409
Kaspersky 94.47% 0.02% 10297 31 205950 603
McAfee 94.14% 0.03% 10261 54 205927 639
AhnLab-V3 93.65% 0.02% 10208 35 205946 692
CAT-QuickHeal 92.50% 0.05% 10082 104 205877 818
Microsoft 90.21% 0.02% 9833 44 205937 1067
McAfee-GW-Edition 86.45% 0.03% 9423 56 205925 1477
Sophos 80.59% 0.01% 8784 25 205956 2116
NANO-Antivirus 76.53% 0.02% 8342 43 205938 2558
SymantecMobileInsight 73.94% 2.69% 8059 5536 200445 2841
Cyren 68.58% 0.02% 7475 41 205940 3425
Tencent 67.96% 0.12% 7408 251 205730 3492
Symantec 66.94% 0.00% 7296 4 205977 3604
Alibaba 63.95% 0.00% 6971 8 205973 3929
Antiy-AVL 63.48% 0.09% 6919 185 205796 3981
MAX 55.36% 0.00% 6034 4 205977 4866
ZoneAlarm 48.06% 0.02% 5239 36 205945 5661
AVG 42.71% 0.02% 4655 31 205950 6245
Avast 42.56% 0.02% 4639 31 205950 6261
Comodo 28.25% 0.09% 3079 186 205795 7821
Zillya 26.37% 0.08% 2874 157 205824 8026
GData 16.16% 0.00% 1761 1 205980 9139
Yandex 14.40% 0.00% 1570 4 205977 9330
ClamAV 14.33% 0.08% 1562 174 205807 9338
BitDefender 14.19% 0.00% 1547 1 205980 9353
Emsisoft 14.02% 0.00% 1528 0 205981 9372
Jiangmin 11.43% 0.48% 1246 991 204990 9654
Kingsoft 9.48% 0.01% 1033 27 205954 9867
MicroWorld-eScan 9.45% 0.00% 1030 0 205981 9870
F-Secure 9.39% 0.00% 1024 1 205980 9876
Arcabit 8.06% 0.00% 879 1 205980 10021
Ad-Aware 4.09% 0.00% 446 0 205981 10454
Zoner 4.08% 0.00% 445 8 205973 10455
TrendMicro-HouseCall 3.80% 0.02% 414 36 205945 10486
TrendMicro 3.25% 0.03% 354 65 205916 10546
Rising 1.98% 0.01% 216 14 205967 10684
VBA32 0.94% 0.01% 103 28 205953 10797
Panda 0.58% 0.00% 63 1 205980 10837
Baidu 0.30% 0.01% 33 27 205954 10867
ViRobot 0.26% 0.00% 28 1 205980 10872
SentinelOne 0.08% 0.00% 9 0 205981 10891
VIPRE 0.04% 0.00% 4 0 205981 10896
K7AntiVirus 0.03% 0.00% 3 0 205981 10897
Malwarebytes 0.02% 0.00% 2 1 205980 10898
SUPERAntiSpyware 0.02% 0.00% 2 0 205981 10898
ALYac 0.01% 0.00% 1 0 205981 10899
Bkav 0.00% 0.00% 0 0 205981 10900
TotalDefense 0.00% 0.00% 0 0 205981 10900
nProtect 0.00% 0.00% 0 0 205981 10900
CMC 0.00% 0.00% 0 0 205981 10900
CrowdStrike 0.00% 0.00% 0 0 205981 10900
TheHacker 0.00% 0.00% 0 0 205981 10900
eScan 0.00% 0.00% 0 0 205981 10900
Babable 0.00% 0.00% 0 0 205981 10900
Invincea 0.00% 0.00% 0 0 205981 10900
F-Prot 0.00% 0.00% 0 0 205981 10900
Endgame 0.00% 0.00% 0 0 205981 10900
Webroot 0.00% 0.00% 0 0 205981 10900
AegisLab 0.00% 0.00% 0 0 205981 10900
AVware 0.00% 0.00% 0 0 205981 10900
Qihoo-360 0.00% 0.00% 0 0 205981 10900
TotalGoodware 205981
TotalMalware 10900
TotalSample 216881

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK 病毒检测统计 2021-08]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210801_20210831.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-2021-08/614251c641be6904271945b8Wed, 15 Sep 2021 20:05:16 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210801_20210831.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
ESET-NOD32 99.52% 0.03% 17282 322 1025420 83
Fortinet 99.50% 0.03% 17279 310 1025432 86
K7GW 98.89% 0.10% 17173 1063 1024679 192
Avira 98.63% 0.00% 17127 42 1025700 238
Ikarus 98.46% 0.06% 17098 565 1025177 267
Trustlook 97.54% 0.04% 16938 459 1025283 427
Avast-Mobile 97.24% 0.24% 16885 2504 1023238 480
DrWeb 96.17% 0.15% 16700 1521 1024221 665
McAfee 95.53% 0.01% 16588 67 1025675 777
CAT-QuickHeal 92.73% 0.02% 16102 217 1025525 1263
AhnLab-V3 92.31% 0.02% 16030 209 1025533 1335
Kaspersky 92.02% 0.00% 15979 41 1025701 1386
Microsoft 88.21% 0.03% 15318 292 1025450 2047
McAfee-GW-Edition 86.97% 0.02% 15102 177 1025565 2263
Sophos 81.46% 0.01% 14145 138 1025604 3220
NANO-Antivirus 79.31% 0.04% 13772 459 1025283 3593
Symantec 76.69% 0.03% 13318 315 1025427 4047
Cyren 75.97% 0.00% 13192 44 1025698 4173
Antiy-AVL 72.74% 0.10% 12631 1069 1024673 4734
SymantecMobileInsight 72.54% 4.63% 12596 47501 978241 4769
Alibaba 59.01% 0.01% 10247 70 1025672 7118
Tencent 54.87% 0.10% 9528 1069 1024673 7837
ZoneAlarm 54.49% 0.01% 9462 106 1025636 7903
AVG 41.22% 0.02% 7158 158 1025584 10207
Avast 40.99% 0.02% 7118 158 1025584 10247
MAX 38.65% 0.00% 6712 34 1025708 10653
Comodo 33.20% 0.21% 5765 2113 1023629 11600
Zillya 20.48% 0.08% 3557 771 1024971 13808
Jiangmin 20.14% 1.12% 3497 11510 1014232 13868
ClamAV 17.33% 0.20% 3010 2005 1023737 14355
GData 13.41% 0.00% 2328 16 1025726 15037
Kingsoft 12.53% 0.01% 2176 128 1025614 15189
Yandex 10.78% 0.00% 1872 20 1025722 15493
BitDefender 10.45% 0.00% 1814 13 1025729 15551
Emsisoft 10.31% 0.00% 1790 15 1025727 15575
TrendMicro 8.79% 0.07% 1527 765 1024977 15838
TrendMicro-HouseCall 8.72% 0.04% 1515 370 1025372 15850
Rising 8.07% 0.02% 1402 175 1025567 15963
VBA32 7.66% 0.02% 1330 230 1025512 16035
F-Secure 6.59% 0.00% 1144 1 1025741 16221
MicroWorld-eScan 6.38% 0.00% 1108 12 1025730 16257
Zoner 6.13% 0.01% 1065 89 1025653 16300
Arcabit 5.00% 0.00% 869 20 1025722 16496
Ad-Aware 3.33% 0.00% 579 11 1025731 16786
Panda 2.06% 0.00% 358 7 1025735 17007
Baidu 1.30% 0.01% 226 125 1025617 17139
ViRobot 0.98% 0.00% 170 31 1025711 17195
Qihoo-360 0.88% 0.00% 152 4 1025738 17213
ALYac 0.44% 0.00% 77 1 1025741 17288
SentinelOne 0.35% 0.00% 61 9 1025733 17304
K7AntiVirus 0.29% 0.00% 50 0 1025742 17315
Malwarebytes 0.21% 0.00% 36 6 1025736 17329
VIPRE 0.21% 0.00% 36 0 1025742 17329
Babable 0.12% 0.02% 20 176 1025566 17345
F-Prot 0.05% 0.00% 8 0 1025742 17357
SUPERAntiSpyware 0.03% 0.00% 5 0 1025742 17360
CMC 0.01% 0.00% 1 1 1025741 17364
Bkav 0.00% 0.00% 0 0 1025742 17365
TotalDefense 0.00% 0.00% 0 0 1025742 17365
nProtect 0.00% 0.00% 0 0 1025742 17365
CrowdStrike 0.00% 0.00% 0 0 1025742 17365
TheHacker 0.00% 0.00% 0 0 1025742 17365
eScan 0.00% 0.00% 0 0 1025742 17365
Invincea 0.00% 0.00% 0 0 1025742 17365
Endgame 0.00% 0.00% 0 0 1025742 17365
Webroot 0.00% 0.00% 0 0 1025742 17365
AegisLab 0.00% 0.00% 0 0 1025742 17365
AVware 0.00% 0.00% 0 0 1025742 17365
TotalGoodware 1025742
TotalMalware 17365
TotalSample 1043107

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK Malware Detection Data 2021-08]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-2021-08/61424fa841be6904271945a8Wed, 15 Sep 2021 19:56:34 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a monthly basis, we publish the detection results and zip the CSV files to AWS S3. For this month, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210801_20210831.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
ESET-NOD32 99.52% 0.03% 17282 322 1025420 83
Fortinet 99.50% 0.03% 17279 310 1025432 86
K7GW 98.89% 0.10% 17173 1063 1024679 192
Avira 98.63% 0.00% 17127 42 1025700 238
Ikarus 98.46% 0.06% 17098 565 1025177 267
Trustlook 97.54% 0.04% 16938 459 1025283 427
Avast-Mobile 97.24% 0.24% 16885 2504 1023238 480
DrWeb 96.17% 0.15% 16700 1521 1024221 665
McAfee 95.53% 0.01% 16588 67 1025675 777
CAT-QuickHeal 92.73% 0.02% 16102 217 1025525 1263
AhnLab-V3 92.31% 0.02% 16030 209 1025533 1335
Kaspersky 92.02% 0.00% 15979 41 1025701 1386
Microsoft 88.21% 0.03% 15318 292 1025450 2047
McAfee-GW-Edition 86.97% 0.02% 15102 177 1025565 2263
Sophos 81.46% 0.01% 14145 138 1025604 3220
NANO-Antivirus 79.31% 0.04% 13772 459 1025283 3593
Symantec 76.69% 0.03% 13318 315 1025427 4047
Cyren 75.97% 0.00% 13192 44 1025698 4173
Antiy-AVL 72.74% 0.10% 12631 1069 1024673 4734
SymantecMobileInsight 72.54% 4.63% 12596 47501 978241 4769
Alibaba 59.01% 0.01% 10247 70 1025672 7118
Tencent 54.87% 0.10% 9528 1069 1024673 7837
ZoneAlarm 54.49% 0.01% 9462 106 1025636 7903
AVG 41.22% 0.02% 7158 158 1025584 10207
Avast 40.99% 0.02% 7118 158 1025584 10247
MAX 38.65% 0.00% 6712 34 1025708 10653
Comodo 33.20% 0.21% 5765 2113 1023629 11600
Zillya 20.48% 0.08% 3557 771 1024971 13808
Jiangmin 20.14% 1.12% 3497 11510 1014232 13868
ClamAV 17.33% 0.20% 3010 2005 1023737 14355
GData 13.41% 0.00% 2328 16 1025726 15037
Kingsoft 12.53% 0.01% 2176 128 1025614 15189
Yandex 10.78% 0.00% 1872 20 1025722 15493
BitDefender 10.45% 0.00% 1814 13 1025729 15551
Emsisoft 10.31% 0.00% 1790 15 1025727 15575
TrendMicro 8.79% 0.07% 1527 765 1024977 15838
TrendMicro-HouseCall 8.72% 0.04% 1515 370 1025372 15850
Rising 8.07% 0.02% 1402 175 1025567 15963
VBA32 7.66% 0.02% 1330 230 1025512 16035
F-Secure 6.59% 0.00% 1144 1 1025741 16221
MicroWorld-eScan 6.38% 0.00% 1108 12 1025730 16257
Zoner 6.13% 0.01% 1065 89 1025653 16300
Arcabit 5.00% 0.00% 869 20 1025722 16496
Ad-Aware 3.33% 0.00% 579 11 1025731 16786
Panda 2.06% 0.00% 358 7 1025735 17007
Baidu 1.30% 0.01% 226 125 1025617 17139
ViRobot 0.98% 0.00% 170 31 1025711 17195
Qihoo-360 0.88% 0.00% 152 4 1025738 17213
ALYac 0.44% 0.00% 77 1 1025741 17288
SentinelOne 0.35% 0.00% 61 9 1025733 17304
K7AntiVirus 0.29% 0.00% 50 0 1025742 17315
Malwarebytes 0.21% 0.00% 36 6 1025736 17329
VIPRE 0.21% 0.00% 36 0 1025742 17329
Babable 0.12% 0.02% 20 176 1025566 17345
F-Prot 0.05% 0.00% 8 0 1025742 17357
SUPERAntiSpyware 0.03% 0.00% 5 0 1025742 17360
CMC 0.01% 0.00% 1 1 1025741 17364
Bkav 0.00% 0.00% 0 0 1025742 17365
TotalDefense 0.00% 0.00% 0 0 1025742 17365
nProtect 0.00% 0.00% 0 0 1025742 17365
CrowdStrike 0.00% 0.00% 0 0 1025742 17365
TheHacker 0.00% 0.00% 0 0 1025742 17365
eScan 0.00% 0.00% 0 0 1025742 17365
Invincea 0.00% 0.00% 0 0 1025742 17365
Endgame 0.00% 0.00% 0 0 1025742 17365
Webroot 0.00% 0.00% 0 0 1025742 17365
AegisLab 0.00% 0.00% 0 0 1025742 17365
AVware 0.00% 0.00% 0 0 1025742 17365
TotalGoodware 1025742
TotalMalware 17365
TotalSample 1043107

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK Malware Detection Data 2021-07]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-2021-07/611ecaa041be69042719459aMon, 02 Aug 2021 21:18:00 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a monthly basis, we publish the detection results and zip the CSV files to AWS S3. For this month, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210701_20210731.zip

The monthly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

endor TPR FPR TP FP TN FN
ESET-NOD32 99.62% 0.01% 23237 20 230432 88
K7GW 99.31% 0.06% 23163 133 230319 162
Fortinet 99.25% 0.01% 23150 20 230432 175
Trustlook 99.22% 0.12% 23142 269 230183 183
Avira 98.24% 0.01% 22914 13 230439 411
Ikarus 98.20% 0.03% 22904 74 230378 421
DrWeb 97.48% 0.05% 22737 120 230332 588
Kaspersky 96.55% 0.01% 22520 13 230439 805
Avast-Mobile 96.21% 0.35% 22441 802 229650 884
CAT-QuickHeal 94.41% 0.02% 22022 40 230412 1303
McAfee 93.53% 0.01% 21817 23 230429 1508
AhnLab-V3 92.31% 0.02% 21531 44 230408 1794
Microsoft 88.28% 0.01% 20592 28 230424 2733
Sophos 87.70% 0.02% 20457 38 230414 2868
McAfee-GW-Edition 85.77% 0.01% 20007 30 230422 3318
NANO-Antivirus 81.11% 0.02% 18919 38 230414 4406
Cyren 79.37% 0.01% 18513 22 230430 4812
Symantec 72.24% 0.04% 16849 88 230364 6476
SymantecMobileInsight 68.14% 3.41% 15893 7861 222591 7432
Antiy-AVL 67.58% 0.18% 15763 423 230029 7562
ZoneAlarm 57.52% 0.01% 13417 25 230427 9908
Alibaba 52.47% 0.01% 12239 16 230436 11086
Tencent 51.80% 0.26% 12083 595 229857 11242
AVG 37.98% 0.03% 8859 73 230379 14466
Avast 37.90% 0.03% 8841 72 230380 14484
MAX 37.87% 0.00% 8833 1 230451 14492
Zillya 24.93% 0.19% 5815 433 230019 17510
Comodo 24.16% 0.65% 5636 1497 228955 17689
ClamAV 16.59% 0.16% 3870 371 230081 19455
Kingsoft 16.40% 0.02% 3825 57 230395 19500
AegisLab 12.40% 0.01% 2893 17 230435 20432
Jiangmin 10.94% 0.95% 2551 2200 228252 20774
GData 9.11% 0.00% 2126 8 230444 21199
F-Secure 8.07% 0.00% 1883 3 230449 21442
BitDefender 7.72% 0.00% 1800 8 230444 21525
Emsisoft 7.61% 0.00% 1776 8 230444 21549
Yandex 7.19% 0.01% 1678 14 230438 21647
TrendMicro-HouseCall 6.02% 0.05% 1405 118 230334 21920
TrendMicro 5.98% 0.06% 1394 133 230319 21931
Zoner 5.09% 0.02% 1188 39 230413 22137
Rising 4.71% 0.01% 1098 30 230422 22227
MicroWorld-eScan 4.21% 0.00% 981 8 230444 22344
Arcabit 4.18% 0.01% 976 13 230439 22349
Qihoo-360 3.24% 0.03% 756 61 230391 22569
VBA32 3.11% 0.03% 725 74 230378 22600
Ad-Aware 1.81% 0.00% 423 8 230444 22902
Panda 1.71% 0.00% 398 3 230449 22927
Baidu 1.30% 0.01% 304 22 230430 23021
ViRobot 0.94% 0.01% 220 14 230438 23105
SentinelOne 0.32% 0.00% 74 3 230449 23251
Malwarebytes 0.27% 0.00% 62 2 230450 23263
Babable 0.25% 0.02% 59 49 230403 23266
ALYac 0.24% 0.00% 56 0 230452 23269
K7AntiVirus 0.08% 0.00% 19 0 230452 23306
F-Prot 0.08% 0.00% 18 0 230452 23307
VIPRE 0.04% 0.00% 10 0 230452 23315
SUPERAntiSpyware 0.01% 0.00% 3 0 230452 23322
CMC 0.01% 0.00% 2 0 230452 23323
Bkav 0.00% 0.00% 0 0 230452 23325
TotalDefense 0.00% 0.00% 0 0 230452 23325
nProtect 0.00% 0.00% 0 0 230452 23325
CrowdStrike 0.00% 0.00% 0 0 230452 23325
TheHacker 0.00% 0.00% 0 0 230452 23325
eScan 0.00% 0.00% 0 0 230452 23325
Invincea 0.00% 0.00% 0 0 230452 23325
Endgame 0.00% 0.00% 0 0 230452 23325
Webroot 0.00% 0.00% 0 0 230452 23325
AVware 0.00% 0.00% 0 0 230452 23325
TotalGoodware 230452
TotalMalware 23325
TotalSample 253777

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK 病毒检测统计 2021-07]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210701_20210731.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor
]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-2021-07/611ec9e941be69042719457fMon, 02 Aug 2021 21:15:00 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每个月的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210701_20210731.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
endor TPR FPR TP FP TN FN
ESET-NOD32 99.62% 0.01% 23237 20 230432 88
K7GW 99.31% 0.06% 23163 133 230319 162
Fortinet 99.25% 0.01% 23150 20 230432 175
Trustlook 99.22% 0.12% 23142 269 230183 183
Avira 98.24% 0.01% 22914 13 230439 411
Ikarus 98.20% 0.03% 22904 74 230378 421
DrWeb 97.48% 0.05% 22737 120 230332 588
Kaspersky 96.55% 0.01% 22520 13 230439 805
Avast-Mobile 96.21% 0.35% 22441 802 229650 884
CAT-QuickHeal 94.41% 0.02% 22022 40 230412 1303
McAfee 93.53% 0.01% 21817 23 230429 1508
AhnLab-V3 92.31% 0.02% 21531 44 230408 1794
Microsoft 88.28% 0.01% 20592 28 230424 2733
Sophos 87.70% 0.02% 20457 38 230414 2868
McAfee-GW-Edition 85.77% 0.01% 20007 30 230422 3318
NANO-Antivirus 81.11% 0.02% 18919 38 230414 4406
Cyren 79.37% 0.01% 18513 22 230430 4812
Symantec 72.24% 0.04% 16849 88 230364 6476
SymantecMobileInsight 68.14% 3.41% 15893 7861 222591 7432
Antiy-AVL 67.58% 0.18% 15763 423 230029 7562
ZoneAlarm 57.52% 0.01% 13417 25 230427 9908
Alibaba 52.47% 0.01% 12239 16 230436 11086
Tencent 51.80% 0.26% 12083 595 229857 11242
AVG 37.98% 0.03% 8859 73 230379 14466
Avast 37.90% 0.03% 8841 72 230380 14484
MAX 37.87% 0.00% 8833 1 230451 14492
Zillya 24.93% 0.19% 5815 433 230019 17510
Comodo 24.16% 0.65% 5636 1497 228955 17689
ClamAV 16.59% 0.16% 3870 371 230081 19455
Kingsoft 16.40% 0.02% 3825 57 230395 19500
AegisLab 12.40% 0.01% 2893 17 230435 20432
Jiangmin 10.94% 0.95% 2551 2200 228252 20774
GData 9.11% 0.00% 2126 8 230444 21199
F-Secure 8.07% 0.00% 1883 3 230449 21442
BitDefender 7.72% 0.00% 1800 8 230444 21525
Emsisoft 7.61% 0.00% 1776 8 230444 21549
Yandex 7.19% 0.01% 1678 14 230438 21647
TrendMicro-HouseCall 6.02% 0.05% 1405 118 230334 21920
TrendMicro 5.98% 0.06% 1394 133 230319 21931
Zoner 5.09% 0.02% 1188 39 230413 22137
Rising 4.71% 0.01% 1098 30 230422 22227
MicroWorld-eScan 4.21% 0.00% 981 8 230444 22344
Arcabit 4.18% 0.01% 976 13 230439 22349
Qihoo-360 3.24% 0.03% 756 61 230391 22569
VBA32 3.11% 0.03% 725 74 230378 22600
Ad-Aware 1.81% 0.00% 423 8 230444 22902
Panda 1.71% 0.00% 398 3 230449 22927
Baidu 1.30% 0.01% 304 22 230430 23021
ViRobot 0.94% 0.01% 220 14 230438 23105
SentinelOne 0.32% 0.00% 74 3 230449 23251
Malwarebytes 0.27% 0.00% 62 2 230450 23263
Babable 0.25% 0.02% 59 49 230403 23266
ALYac 0.24% 0.00% 56 0 230452 23269
K7AntiVirus 0.08% 0.00% 19 0 230452 23306
F-Prot 0.08% 0.00% 18 0 230452 23307
VIPRE 0.04% 0.00% 10 0 230452 23315
SUPERAntiSpyware 0.01% 0.00% 3 0 230452 23322
CMC 0.01% 0.00% 2 0 230452 23323
Bkav 0.00% 0.00% 0 0 230452 23325
TotalDefense 0.00% 0.00% 0 0 230452 23325
nProtect 0.00% 0.00% 0 0 230452 23325
CrowdStrike 0.00% 0.00% 0 0 230452 23325
TheHacker 0.00% 0.00% 0 0 230452 23325
eScan 0.00% 0.00% 0 0 230452 23325
Invincea 0.00% 0.00% 0 0 230452 23325
Endgame 0.00% 0.00% 0 0 230452 23325
Webroot 0.00% 0.00% 0 0 230452 23325
AVware 0.00% 0.00% 0 0 230452 23325
TotalGoodware 230452
TotalMalware 23325
TotalSample 253777

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]><![CDATA[VirusTotal APK Malware Detection Data - Week 29: 202100712-20210718]]>At Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of

]]>https://blog.trustlook.com/virustotal-apk-malware-detection-data-week-29-202100712-20210718/60ff5a7441be690427194554Tue, 27 Jul 2021 00:59:58 GMTAt Trustlook, we monitor live feed from VirusTotal (VT). On a daily basis, we collect APK samples from VT along with detection results from Anti-Virus (AV) vendors hosted on VT. Using a conservative labeling policy, we are able to select thousands of benign and malicious APK samples from millions of live feed samples. Then we look at detection results from AV vendors and rate them by how many malware they have detected and how many benign samples they have misclassified.

We generate a CSV file recording the detection results everyday. In the CSV file, from left to right, the columns are MD5 hash of the APK, label where 1 means positive (malicious) and 0 means negative (benign), and one column for each vendor showing its detection results where 1 means positive and 0 means negative.

On a weekly basis, we publish the detection results and zip the CSV files to AWS S3. For this week, you can download the detection data from:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210712_20210718.zip

The weekly results are summarized in the table below and here is a simple explanation of the columns in the table:

  • Vendor: AV engine vendor
  • TPR: True Positive Rate, percentage of positive (malware) samples being correctly classified as positive
  • FPR: False Positive Rate, percentage of negative (goodware) samples being misclassified as positive
  • TP: True Positive, number of positive (malware) samples being correctly classified as positive
  • FP: False Positive, number of negative (goodware) samples being misclassified as positive
  • TN: True Negative, number of negative (goodware) samples being correctly classified as negative
  • FN: False Negative, number of positive (malware) samples being misclassified as negative

Vendor TPR FPR TP FP TN FN
Fortinet 99.74% 0.01% 4178 2 30850 11
ESET-NOD32 99.69% 0.01% 4176 3 30849 13
Avira 99.43% 0.00% 4165 1 30851 24
K7GW 99.38% 0.06% 4163 17 30835 26
DrWeb 99.31% 0.08% 4160 24 30828 29
Trustlook 99.12% 0.17% 4152 52 30800 37
Ikarus 98.26% 0.01% 4116 4 30848 73
Kaspersky 97.18% 0.01% 4071 2 30850 118
Avast-Mobile 97.14% 0.27% 4069 84 30768 120
AhnLab-V3 95.46% 0.03% 3999 10 30842 190
McAfee 91.55% 0.01% 3835 2 30850 354
CAT-QuickHeal 91.05% 0.00% 3814 1 30851 375
Microsoft 88.66% 0.00% 3714 1 30851 475
Sophos 87.11% 0.02% 3649 7 30845 540
Cyren 82.88% 0.02% 3472 5 30847 717
McAfee-GW-Edition 81.69% 0.00% 3422 1 30851 767
NANO-Antivirus 80.00% 0.01% 3351 2 30850 838
Antiy-AVL 70.83% 0.10% 2967 31 30821 1222
Symantec 54.69% 0.01% 2291 2 30850 1898
ZoneAlarm 53.35% 0.01% 2235 3 30849 1954
SymantecMobileInsight 46.93% 1.66% 1966 512 30340 2223
AVG 25.83% 0.03% 1082 9 30843 3107
Avast 25.81% 0.03% 1081 9 30843 3108
Alibaba 25.09% 0.01% 1051 2 30850 3138
MAX 23.56% 0.00% 987 0 30852 3202
Tencent 22.80% 0.03% 955 9 30843 3234
Comodo 21.20% 0.04% 888 11 30841 3301
Zillya 19.69% 0.07% 825 23 30829 3364
ClamAV 15.80% 0.06% 662 17 30835 3527
GData 9.95% 0.00% 417 0 30852 3772
Yandex 8.86% 0.01% 371 4 30848 3818
Kingsoft 8.04% 0.00% 337 1 30851 3852
BitDefender 7.50% 0.00% 314 0 30852 3875
F-Secure 7.47% 0.00% 313 0 30852 3876
Emsisoft 7.38% 0.00% 309 0 30852 3880
Jiangmin 6.83% 0.46% 286 142 30710 3903
MicroWorld-eScan 4.44% 0.00% 186 0 30852 4003
TrendMicro-HouseCall 4.44% 0.02% 186 7 30845 4003
TrendMicro 4.30% 0.04% 180 13 30839 4009
Arcabit 3.72% 0.00% 156 0 30852 4033
Rising 3.01% 0.01% 126 4 30848 4063
Ad-Aware 2.48% 0.00% 104 0 30852 4085
VBA32 2.12% 0.01% 89 3 30849 4100
Zoner 2.05% 0.00% 86 0 30852 4103
Qihoo-360 1.69% 0.06% 71 17 30835 4118
Panda 0.88% 0.00% 37 1 30851 4152
Baidu 0.29% 0.00% 12 1 30851 4177
Babable 0.19% 0.01% 8 2 30850 4181
ViRobot 0.14% 0.00% 6 0 30852 4183
SentinelOne 0.14% 0.00% 6 0 30852 4183
VIPRE 0.05% 0.00% 2 0 30852 4187
F-Prot 0.05% 0.00% 2 0 30852 4187
CMC 0.02% 0.00% 1 0 30852 4188
SUPERAntiSpyware 0.02% 0.00% 1 0 30852 4188
Bkav 0.00% 0.00% 0 0 30852 4189
TotalDefense 0.00% 0.00% 0 0 30852 4189
nProtect 0.00% 0.00% 0 0 30852 4189
ALYac 0.00% 0.00% 0 0 30852 4189
Malwarebytes 0.00% 0.00% 0 0 30852 4189
CrowdStrike 0.00% 0.00% 0 0 30852 4189
K7AntiVirus 0.00% 0.00% 0 0 30852 4189
TheHacker 0.00% 0.00% 0 0 30852 4189
eScan 0.00% 0.00% 0 0 30852 4189
Invincea 0.00% 0.00% 0 0 30852 4189
Endgame 0.00% 0.00% 0 0 30852 4189
Webroot 0.00% 0.00% 0 0 30852 4189
AegisLab 0.00% 0.00% 0 0 30852 4189
AVware 0.00% 0.00% 0 0 30852 4189
TotalGoodware 30852
TotalMalware 4189
TotalSample 35041

Please send an email to lxu@trustlook.com if you have any comments. Thanks.

]]><![CDATA[VirusTotal APK 病毒检测统计 - 第29周: 20210712-20210718]]>VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每星期 7 天的的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210712_20210718.zip

下面的表格列出了各家杀毒引擎的统计结果,

]]>https://blog.trustlook.com/virustotal-apk-bing-du-jian-ce-tong-ji-di-29zhou-20210712-20210718/60ff5a3a41be690427194547Tue, 27 Jul 2021 00:59:06 GMTVirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每星期 7 天的的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210712_20210718.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
Fortinet 99.74% 0.01% 4178 2 30850 11
ESET-NOD32 99.69% 0.01% 4176 3 30849 13
Avira 99.43% 0.00% 4165 1 30851 24
K7GW 99.38% 0.06% 4163 17 30835 26
DrWeb 99.31% 0.08% 4160 24 30828 29
Trustlook 99.12% 0.17% 4152 52 30800 37
Ikarus 98.26% 0.01% 4116 4 30848 73
Kaspersky 97.18% 0.01% 4071 2 30850 118
Avast-Mobile 97.14% 0.27% 4069 84 30768 120
AhnLab-V3 95.46% 0.03% 3999 10 30842 190
McAfee 91.55% 0.01% 3835 2 30850 354
CAT-QuickHeal 91.05% 0.00% 3814 1 30851 375
Microsoft 88.66% 0.00% 3714 1 30851 475
Sophos 87.11% 0.02% 3649 7 30845 540
Cyren 82.88% 0.02% 3472 5 30847 717
McAfee-GW-Edition 81.69% 0.00% 3422 1 30851 767
NANO-Antivirus 80.00% 0.01% 3351 2 30850 838
Antiy-AVL 70.83% 0.10% 2967 31 30821 1222
Symantec 54.69% 0.01% 2291 2 30850 1898
ZoneAlarm 53.35% 0.01% 2235 3 30849 1954
SymantecMobileInsight 46.93% 1.66% 1966 512 30340 2223
AVG 25.83% 0.03% 1082 9 30843 3107
Avast 25.81% 0.03% 1081 9 30843 3108
Alibaba 25.09% 0.01% 1051 2 30850 3138
MAX 23.56% 0.00% 987 0 30852 3202
Tencent 22.80% 0.03% 955 9 30843 3234
Comodo 21.20% 0.04% 888 11 30841 3301
Zillya 19.69% 0.07% 825 23 30829 3364
ClamAV 15.80% 0.06% 662 17 30835 3527
GData 9.95% 0.00% 417 0 30852 3772
Yandex 8.86% 0.01% 371 4 30848 3818
Kingsoft 8.04% 0.00% 337 1 30851 3852
BitDefender 7.50% 0.00% 314 0 30852 3875
F-Secure 7.47% 0.00% 313 0 30852 3876
Emsisoft 7.38% 0.00% 309 0 30852 3880
Jiangmin 6.83% 0.46% 286 142 30710 3903
MicroWorld-eScan 4.44% 0.00% 186 0 30852 4003
TrendMicro-HouseCall 4.44% 0.02% 186 7 30845 4003
TrendMicro 4.30% 0.04% 180 13 30839 4009
Arcabit 3.72% 0.00% 156 0 30852 4033
Rising 3.01% 0.01% 126 4 30848 4063
Ad-Aware 2.48% 0.00% 104 0 30852 4085
VBA32 2.12% 0.01% 89 3 30849 4100
Zoner 2.05% 0.00% 86 0 30852 4103
Qihoo-360 1.69% 0.06% 71 17 30835 4118
Panda 0.88% 0.00% 37 1 30851 4152
Baidu 0.29% 0.00% 12 1 30851 4177
Babable 0.19% 0.01% 8 2 30850 4181
ViRobot 0.14% 0.00% 6 0 30852 4183
SentinelOne 0.14% 0.00% 6 0 30852 4183
VIPRE 0.05% 0.00% 2 0 30852 4187
F-Prot 0.05% 0.00% 2 0 30852 4187
CMC 0.02% 0.00% 1 0 30852 4188
SUPERAntiSpyware 0.02% 0.00% 1 0 30852 4188
Bkav 0.00% 0.00% 0 0 30852 4189
TotalDefense 0.00% 0.00% 0 0 30852 4189
nProtect 0.00% 0.00% 0 0 30852 4189
ALYac 0.00% 0.00% 0 0 30852 4189
Malwarebytes 0.00% 0.00% 0 0 30852 4189
CrowdStrike 0.00% 0.00% 0 0 30852 4189
K7AntiVirus 0.00% 0.00% 0 0 30852 4189
TheHacker 0.00% 0.00% 0 0 30852 4189
eScan 0.00% 0.00% 0 0 30852 4189
Invincea 0.00% 0.00% 0 0 30852 4189
Endgame 0.00% 0.00% 0 0 30852 4189
Webroot 0.00% 0.00% 0 0 30852 4189
AegisLab 0.00% 0.00% 0 0 30852 4189
AVware 0.00% 0.00% 0 0 30852 4189
TotalGoodware 30852
TotalMalware 4189
TotalSample 35041

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

]]>