Verify if your Android security software

Detects drive-by downloads of malware

Drive-by download means two things, each concerning the unintended download of computer software from the Internet:

  1. Downloads which a person has authorized but without understanding the consequences (e.g. downloads which install an unknown or counterfeit executable program, ActiveX component, or Java applet) automatically.
  2. Any download that happens without a person’s knowledge, often a computer virus, spyware, malware, or crimeware.

To verify if your Android security software detects drive-by downloads of malware, a simulated “drive-by download” will be initiated: a new web page will open and your browser will automatically attempt to download the AMTSO test APK file for Android. 

This file is NOT actually malicious, but by industry-wide agreement this file is detected as malicious by mainstream products with Android anti-malware functionality so that people can verify that their anti-malware product’s detection capability is configured correctly.

When you click on this button, a simulated “drive-by download” is initiated: a new web page will open and your browser will automatically attempt to download the AMTSO test APK file for Android. 

If you are able to download or install this file successfully, your anti-malware solution is NOT configured correctly or DOES NOT conform with industry best practice.

Not sure if your product should support this feature?

Please contact your vendor’s support department for instructions explaining how to enable the feature in your product.

Verify if your Android security software

The AMTSO Security Features Check Tools are hosted in association with EICAR.