Video Wise Vector StopX vs Ransominator

geminis3

Level 19
Thread author
Verified
Top poster
Well-known
Sep 10, 2015
907

This test shows how an antivirus behaves with certain threats, in a specific environment and under certain conditions.
We encourage you to compare these results with others and take informed decisions on what security products to use.
Before buying an antivirus you should consider factors such as price, ease of use, compatibility, and support. Installing a free trial version allows an antivirus to be tested in everyday use before purchase.
 

Parsh

Level 25
Verified
Helper
Top poster
Malware Hunter
Well-known
Dec 27, 2016
1,485
Interesting that it did not take program reputation into account unlike others .. and flagged the encryption process once it confirmed the malice. The confirmation period overhead costed some files though.
Adding a rollback feature could be an inefficient but a good pointer for WV's strength.
 

MacDefender

Level 16
Verified
Top poster
Oct 13, 2019
776
wise is it like those chinese programs? who spies? I don't believe in Chinese protection programs,
I think it's still wise (pun intended) to separate objective testing of the features from whether or not we'd recommend it to be used.

For example, many might say the exact same thing about Kaspersky but replace Chinese with Russian. Otherwise might have distrusted Avast forever based off what recently happened with their free edition.

Regardless of whether we'd personally trust using their software, I think it's still worthwhile to test and assess their protective abilities. The problem with trying to debate the privacy/trust aspect is that the truth is something we might never be able to uncover. None of us work for spy agencies or otherwise have the cold facts for proving or disproving those kinds of allegations. It just turns into unproductive and borderline xenophobic statements about whether or not we trust a foreign entity.
 

The Ordynary

Level 3
Apr 26, 2020
106
I think it's still wise (pun intended) to separate objective testing of the features from whether or not we'd recommend it to be used.

For example, many might say the exact same thing about Kaspersky but replace Chinese with Russian. Otherwise might have distrusted Avast forever based off what recently happened with their free edition.

Regardless of whether we'd personally trust using their software, I think it's still worthwhile to test and assess their protective abilities. The problem with trying to debate the privacy/trust aspect is that the truth is something we might never be able to uncover. None of us work for spy agencies or otherwise have the cold facts for proving or disproving those kinds of allegations. It just turns into unproductive and borderline xenophobic statements about whether or not we trust a foreign entity.
even less do I trust a socialist republic where the government controls everything in the lives of its population, even though it is open to capital, kaspersky has already offered its source code for analysis,
 

MacDefender

Level 16
Verified
Top poster
Oct 13, 2019
776
even less do I trust a socialist republic where the government controls everything in the lives of its population, even though it is open to capital, kaspersky has already offered its source code for analysis,
Well you can offer me all you want to inspect/analysis but (1) if you don't let me hit Compile and build it myself, I have no reason to trust that what you've shown me is what you've delivered. And (2) What you show me about how your product works today says ZERO about what I might push to you tomorrow in a background update.

I've spent a lot of time working for a software company with strong US and EU presence and you wouldn't believe how often both of those government bodies attempt to coerce the company into doing something borderline unethical. It is a reflection of the moral fiber of the company (and how much reserve cash and lawyers they have on hand) what they choose to do.

For the record, I'm not saying I believe the Kaspersky allegations. All I'm saying is that we should treat that as a separate debate compared to discussing how the product has performed.
 

The Ordynary

Level 3
Apr 26, 2020
106
Well you can offer me all you want to inspect/analysis but (1) if you don't let me hit Compile and build it myself, I have no reason to trust that what you've shown me is what you've delivered. And (2) What you show me about how your product works today says ZERO about what I might push to you tomorrow in a background update.

I've spent a lot of time working for a software company with strong US and EU presence and you wouldn't believe how often both of those government bodies attempt to coerce the company into doing something borderline unethical. It is a reflection of the moral fiber of the company (and how much reserve cash and lawyers they have on hand) what they choose to do.

For the record, I'm not saying I believe the Kaspersky allegations. All I'm saying is that we should treat that as a separate debate compared to discussing how the product has performed.
Yes the test is valid, I'm just saying that I trust Chinese software even less, and the reasons are quite obvious, but antivirus is different from any software that may or may not interfere, antivirus is made for you to protect and not spy .
 

MacDefender

Level 16
Verified
Top poster
Oct 13, 2019
776
Yes the test is valid, I'm just saying that I trust Chinese software even less, and the reasons are quite obvious, but antivirus is different from any software that may or may not interfere, antivirus is made for you to protect and not spy .
I'll also add that antivirus is basically a benevolent rootkit. We authorize it to be at the decision point for everything we see happening. China ownership aside, almost every AV software today is cloud based, and the default settings result in the possibility that if it encounters a new binary on your machine, it will upload that to the cloud.

We really have to be mindful of the privacy implications of antivirus software. And whenever there's a new vendor on the street with little of a track record, or a major player gets sold, all of that leaves me feeling a little uneasy inside.

Like you, I would have reservations about trying out WV as my primary AV. From a technical standpoint the way the product has been performing and the enthusiasm of the vendor to improve the product are both really respectable, but my trust takes a long time to earn.
 

Vitali Ortzi

Level 22
Verified
Top poster
Well-known
Dec 12, 2016
1,114
I'll also add that antivirus is basically a benevolent rootkit. We authorize it to be at the decision point for everything we see happening. China ownership aside, almost every AV software today is cloud based, and the default settings result in the possibility that if it encounters a new binary on your machine, it will upload that to the cloud.

We really have to be mindful of the privacy implications of antivirus software. And whenever there's a new vendor on the street with little of a track record, or a major player gets sold, all of that leaves me feeling a little uneasy inside.

Like you, I would have reservations about trying out WV as my primary AV. From a technical standpoint the way the product has been performing and the enthusiasm of the vendor to improve the product are both really respectable, but my trust takes a long time to earn.
That's why i use on Prem SEP
And all live updates go from SPEM to SEP.

Btw if anyone wants a very long trial of SPEM pm me.
 

geminis3

Level 19
Thread author
Verified
Top poster
Well-known
Sep 10, 2015
907
I'll also add that antivirus is basically a benevolent rootkit. We authorize it to be at the decision point for everything we see happening. China ownership aside, almost every AV software today is cloud based, and the default settings result in the possibility that if it encounters a new binary on your machine, it will upload that to the cloud.

We really have to be mindful of the privacy implications of antivirus software. And whenever there's a new vendor on the street with little of a track record, or a major player gets sold, all of that leaves me feeling a little uneasy inside.

Like you, I would have reservations about trying out WV as my primary AV. From a technical standpoint the way the product has been performing and the enthusiasm of the vendor to improve the product are both really respectable, but my trust takes a long time to earn.
I trust Chinese software as any other software unless it comes from a company owned/funded by the CCP but that's my two cents
 

WiseVector

From WiseVector
Verified
Top poster
Developer
Well-known
Dec 14, 2018
629
Hi geminis3 ,

Thanks for testing WiseVector StopX. And thanks @harlan4096 for the sample.

We tested your sample twice. First time WiseVectop StopX blocked the attack immediately, no files got encrypted. Second time the ransomware encrypted files located in desktop and music, pictures folder and then WVSX blocked it. Files in other folders are safe.

It is also a good opportunity to test upcoming WVSX V2.6. Since we have added several ransomware detection models in 2.6.
V2.6 blocked the attack successfully,

snap.PNG
 

WiseVector

From WiseVector
Verified
Top poster
Developer
Well-known
Dec 14, 2018
629
even less do I trust a socialist republic where the government controls everything in the lives of its population, even though it is open to capital, kaspersky has already offered its source code for analysis,

We don't like "big" government too. Since we are a small company we don't think our big-government will pay attention to us. We don't have interest in spying anyone. See our privacy policy: 智量终端安全隐私条款 | 智量
 

geminis3

Level 19
Thread author
Verified
Top poster
Well-known
Sep 10, 2015
907
Hi geminis3 ,

Thanks for testing WiseVector StopX. And thanks @harlan4096 for the sample.

We tested your sample twice. First time WiseVectop StopX blocked the attack immediately, no files got encrypted. Second time the ransomware encrypted files located in desktop and music, pictures folder and then WVSX blocked it. Files in other folders are safe.

It is also a good opportunity to test upcoming WVSX V2.6. Since we have added several ransomware detection models in 2.6.
V2.6 blocked the attack successfully,

View attachment 238243
Finally a company that cares to protect it's users from this kind of threats without excusing that it was demoware, despite having on the wild ransomware with similar technique but with real ransom intentions 👏👏👏
 

Vitali Ortzi

Level 22
Verified
Top poster
Well-known
Dec 12, 2016
1,114
Finally a company that cares to protect it's users from this kind of threats without excusing that it was demoware, despite having on the wild ransomware with similar technique but with real ransom intentions 👏👏👏
Yes wisevecter has the best support !
Most av companies are so big that support doesn't have direct access to development team unlike wise vector