@Nikos751: What I'm trying to say is that AV's way to gather information are difficult, since the threat nowadays are smart enough to hide like in polymorphic algorithm/obfuscation.
Samples on MT and other organization must be representative of the real threat scene and AV's should perform more extensive effort.