Disclaimer

This test shows how an antivirus behaves with certain threats, in a specific environment and under certain conditions.
We encourage you to compare these results with others and take informed decisions on what security products to use.
Before buying an antivirus you should consider factors such as price, ease of use, compatibility, and support. Installing a free trial version allows an antivirus to be tested in everyday use before purchase.

harlan4096

Level 62
Verified
Staff member
Malware Hunter
SecureAPlus (APEX + WhiteListing + UniversalAV Disabled) - September 2019 Report
Due to the small number of samples used in this tests, you should take results with a grain of salt. We encourage you to compare these results with others and take informed decisions on what security products to use.
__

C: Clean / P: Protected / P - NC: Protected - Not Clean / I: Infected / E: Encrypted
A: APEX / W: WhiteListing / LD: LockDown


* Dynamic BB Bonus Test (APEX Resident Protection disabled)
* Partially Blocked
* BSR: Before System Reboot
* ASR: After System Reboot

September
2019
Samples
Pack
Static
Detection
Dynamic
Detection
Total
Detection
Bait Files
Encrypted
2nd Opinion
Scanners
System
Final Status
Thread
Link
* Next
tests
will be
performed
in
Interactive Mode
(Default):
02/09/2019
28
15 (A) / 28
1 (A) + 9 (W) / 13
25 / 28
No
C: ZAM, NPE, HMP
I: WV
P - NC
03/09/2019
1
0 / 1
1 (W)
1 / 1
No
C
P
03/09/2019
3
3 (A) / 3
3 (W) / 3*
3 / 3
3 / 3*
No
C
C
P*
04/09/2019
19
9 (A) / 19
8 (W) / 10
17 / 19
No
C
P
06/09/2019
20
10 (A) / 20
7 (W) + 1 (W)* / 10
18 / 20
No
I
BSR: I
ASR:
I
06/09/2019
1
1 (A) / 1
1 (W) / 1*
1 / 1
1 / 1*
No
C
C
P*
07/09/2019
6
1 (A) / 6
5 (W) / 5
6 / 6
No
C
P
09/09/2019
22
10 (A) / 22
1 (A) + 11 (W) / 12
22 / 22
No
C: ZAM
I: WV, NPE, HMP
P - NC
11/09/2019
1
1(A) / 1
1 (W) / 1 *
1 / 1
1 / 1*
No
C
C
12/09/2019
1
0 / 1
1 (W) / 1
1 / 1
No
C
P
12/09/2019
1
1 (A) / 1
1 (W) / 1*
1 / 1
1 / 1*
No
C
C
13/09/2019
26
12 (A) / 16
10 (W) / 14
22 / 26
No
C
P
* Next
tests
will be
performed
in
LockDown Mode:
16/09/2019
21
10 (A) / 21
7 + 1* (LD) / 11
18 / 21
No
I
BSR: I
ASR: I
17/09/2019
18
10 (A) / 18
6 (LD) / 8
16 / 21
No
I
BSR: I
ASR: I
17/09/2019
3
2 (A) / 3
1 (LD) / 1
2 (LD) / 2*
3 / 3
No
C
P
18/09/2019​
5​
0 / 5​
5 (LD) / 5​
5 / 5​
No​
C
P
19/09/2019​
17​
6 (A) / 17​
11 (LD) / 11​
17 / 17​
No​
C
P
20/09/2019​
1​
1 (A) / 1​
1 (LD) / 1*
1 / 1
1 / 1*
No
C
C
P*
20/09/2019​
3​
0 / 3​
3 (LD) / 3​
3 / 3​
No​
C
P
 
Last edited:

woodrowbone

Level 9
Great Harlan!
Do you send them the files that APEX missed?
Submit
Just to train APEX against them (y)

I did just test APEX against aprox 400 new malware (90% ransomware) and it nailed all of them.
I just guess their AI learned all there is from the samples I get my hands on, good that you have other sources.

/W
 

woodrowbone

Level 9
You could be correct regarding exe files only, somewhere in the back of my head I think I heard this before from SAP.
Maybe he can confirm?
And if so when will APEX cover more extensions?

If APEX only detects exe files it should be possible to change under "scan settings" disable Register as Antivirus, and let Microsoft Defender enable itself. Run ConfigureDefender on High settings to pick up both exe and the rest. Hopefully APEX as a companion jumps in if Defender misses any exe.

As I only get my hands on exe files I cant test this combo that I think would be awesome, but that could be a subject for testing later on if you have the time Harlan.

Keep up the much appreciated work (y)

/W
 

woodrowbone

Level 9
You can run Whitelisting in "Observation mode".
App settings, Application whitelisting, Advanced settings, in here you enable observation mode.
I run it this way as I use CFW + CS settings, making the whitelisting feature redundant.

/W
 

harlan4096

Level 62
Verified
Staff member
Malware Hunter
Yeah I know "Observation Mode" will allow all unkwon applications to run... but I guess that SAP without WhiteListing and only with APEX will get easily infected in the Hub since APEX only monitors exe files :) until now in my Hub tests WhiteListing has been complementing APEX...
 

harlan4096

Level 62
Verified
Staff member
Malware Hunter
Hum probably They don't contemplate APEX detecting extra files types for now since SAP already has Universal AV cloud multi engine, this way this is also a complement to APEX only detecting exe files...
 
Last edited: