March 8, 2021

VirusTotal APK 病毒检测统计 - 第10周: 20210301-20210307

VirusTotal (简称 VT), 是谷歌旗下一家免费提供可疑文件扫描服务的网站. VT 上有超过50家反病毒引擎提供实时扫描服务. 我们每天收集用户上传到 VT 的 APK 样本以及各家引擎的扫描结果, 并通过保守的策略筛选出数万的良性和恶意样本, 然后统计各家引擎的病毒检测结果.

每天, 我们会生成一个包含各家检测数据的 CSV 文件. 文件中会列出样本的 MD5 哈希值, 标签 (0 标示良性样本, 1 标示恶意样本), 以及各家的检测结果 (0 表示检测为良性样本, 1 表示检测为恶意样本). 每星期 7 天的的 CSV 文件会被打包并上传到亚马逊 AWS S3. 有兴趣的读者可以下载检验各家杀毒引擎的检测结果.

以下为检测结果的下载链接:

https://virustotal-results.s3-us-west-1.amazonaws.com/VirusTotal_Results_20210301_20210307.zip

下面的表格列出了各家杀毒引擎的统计结果, 其中各列的含义如下:

  • Vendor: 杀毒引擎厂商名称
  • TPR: True Positive Rate, 恶意样本检出率
  • FPR: False Positive Rate, 良性样本误报率
  • TP: True Positive, 正确检出为恶意样本的数量
  • FP: False Positive, 误报为恶意样本的数量
  • TN: True Negative, 正确检出为良性样本的数量
  • FN: False Negative, 误报为良性样本的数量
Vendor TPR FPR TP FP TN FN
K7GW 99.74% 0.04% 17872 22 55662 46
ESET-NOD32 99.22% 0.01% 17779 5 55679 139
Avast-Mobile 99.06% 0.30% 17750 167 55517 168
CAT-QuickHeal 98.79% 0.01% 17702 4 55680 216
AhnLab-V3 98.75% 0.03% 17694 15 55669 224
Trustlook 98.69% 0.15% 17683 84 55600 235
ZoneAlarm 98.67% 0.01% 17679 4 55680 239
Avira 98.06% 0.00% 17570 1 55683 348
Fortinet 97.98% 0.01% 17556 7 55677 362
McAfee 96.74% 0.01% 17333 3 55681 585
Kaspersky 96.60% 0.00% 17308 2 55682 610
Ikarus 95.69% 0.08% 17145 42 55642 773
DrWeb 95.48% 0.09% 17108 52 55632 810
McAfee-GW-Edition 95.07% 0.01% 17034 3 55681 884
F-Secure 92.65% 0.00% 16601 1 55683 1317
Qihoo-360 92.07% 0.02% 16497 9 55675 1421
Sophos 92.00% 0.01% 16485 4 55680 1433
NANO-Antivirus 91.29% 0.01% 16358 6 55678 1560
SymantecMobileInsight 88.32% 1.82% 15825 1015 54669 2093
Microsoft 87.81% 0.02% 15734 12 55672 2184
Symantec 85.16% 0.00% 15259 2 55682 2659
Alibaba 83.85% 0.01% 15025 3 55681 2893
Tencent 81.34% 0.04% 14575 25 55659 3343
AegisLab 81.21% 0.10% 14551 54 55630 3367
Avast 80.87% 0.03% 14490 19 55665 3428
AVG 80.87% 0.03% 14490 19 55665 3428
Cyren 77.78% 0.00% 13936 1 55683 3982
Antiy-AVL 74.86% 0.12% 13413 67 55617 4505
Comodo 58.67% 0.06% 10513 36 55648 7405
MAX 57.52% 0.00% 10307 1 55683 7611
Zillya 38.65% 0.07% 6926 41 55643 10992
ClamAV 27.58% 0.17% 4942 96 55588 12976
Rising 18.36% 0.01% 3290 4 55680 14628
GData 17.90% 0.00% 3207 0 55684 14711
Jiangmin 13.99% 0.27% 2506 150 55534 15412
BitDefender 11.80% 0.00% 2114 0 55684 15804
TrendMicro 11.78% 0.04% 2111 24 55660 15807
Arcabit 11.73% 0.00% 2101 0 55684 15817
TrendMicro-HouseCall 11.68% 0.04% 2092 23 55661 15826
Emsisoft 11.67% 0.00% 2091 0 55684 15827
Kingsoft 11.31% 0.00% 2027 1 55683 15891
Zoner 9.87% 0.01% 1769 5 55679 16149
Yandex 8.41% 0.00% 1507 1 55683 16411
MicroWorld-eScan 6.49% 0.00% 1163 0 55684 16755
VBA32 5.56% 0.01% 996 6 55678 16922
Ad-Aware 3.31% 0.00% 593 0 55684 17325
Panda 2.08% 0.00% 372 0 55684 17546
K7AntiVirus 0.84% 0.00% 150 0 55684 17768
Baidu 0.58% 0.02% 104 9 55675 17814
VIPRE 0.33% 0.00% 59 0 55684 17859
ViRobot 0.25% 0.00% 45 1 55683 17873
TotalDefense 0.18% 0.00% 33 0 55684 17885
Malwarebytes 0.04% 0.00% 8 1 55683 17910
SentinelOne 0.04% 0.00% 8 0 55684 17910
ALYac 0.02% 0.00% 3 0 55684 17915
Bkav 0.00% 0.00% 0 0 55684 17918
nProtect 0.00% 0.00% 0 0 55684 17918
CMC 0.00% 0.00% 0 0 55684 17918
CrowdStrike 0.00% 0.00% 0 0 55684 17918
TheHacker 0.00% 0.00% 0 0 55684 17918
eScan 0.00% 0.00% 0 0 55684 17918
Babable 0.00% 0.00% 0 0 55684 17918
SUPERAntiSpyware 0.00% 0.00% 0 0 55684 17918
Invincea 0.00% 0.00% 0 0 55684 17918
F-Prot 0.00% 0.00% 0 0 55684 17918
Endgame 0.00% 0.00% 0 0 55684 17918
Webroot 0.00% 0.00% 0 0 55684 17918
AVware 0.00% 0.00% 0 0 55684 17918
TotalGoodware 55684
TotalMalware 17918
TotalSample 73602

如有任何疑问, 欢迎随时邮件联系 lxu@trustlook.com. 谢谢.

Author
Lifan Xu

Read more posts by this author.