How to Verify the Antivirus Profile is Correctly Detecting Malware

An Administrator needs to trigger a positive hit on the antivirus profile to verify the antivirus's capabilities.

Note: Test solution provide in a non-production environment on a test device. SOTI is not responsible for any damage caused by such tests. The file and application mentioned are third-party test apps and files and are to be tested at the reader's risk.

All SOTI MobiControl later than version 10

To test the profile, apply one or both of the methods on your test device. If there is any other file or app you would like to test, then the steps are the same, except for the file or app.

For Malware Application Detection:

1. Install the AV Test App:
• Download and install the third-party application 'F-Secure AV Test' from the Google Play Store.
2. Trigger an Antivirus Scan:
• Initiate a scan on the device using the antivirus profile.
3. Check Logs:
• Verify that the message "Malware application detected" is recorded in the logs.

For Malware File Detection:

1. Rename or Download the File:
• Ensure that the *.apk file is renamed appropriately, as only application test files trigger the test positive.
2. Copy Eicar Test Virus File:
• Download and copy the Eicar test virus file to the device.
3. Trigger an AntiVirus Scan:
• Perform a scan on the device with the antivirus profile enabled.
4. Check Logs:
• Confirm that the message "Malware file detected" is recorded in the logs.

Note: For instructions on setting up antivirus profiles in SOTI MobiControl, see the Antivirus Protection topic in the SOTI MobiControl online help.

Note: Testing with the 'F-Secure AV Test' and 'Eicar test virus file' can help you understand how malware detection works without actual threats.

• Alerts indicating the detection of malware in the logs.
• 'Malware application detected' or 'Malware file detected' messages are logged during scans.
• 'Malware Detected" toast messages on the device when the test application is detected as malware: