What is the best open source detection tool for malware that has anti-virtualization?

Hi, my M.Sc. thesis is "Detecting Android Malware using TF-IDF and N-Gram Methods Leveraging Text Semantics of Network Flows”. In my M.Sc. thesis I have worked on malware detection to find a new solution for malware evasion problem in android environments.  I want to implement my idea with "Rapid Miner" thus I need a ".csv" data-set of malware and benign app network flows. I've downloaded many data-sets but none of the satisfied my needs. The most appropriate data-set among all of them for me is Android Malware data-set (InvesAndMal2019).

https://www.unb.ca/cic/datasets/invesandmal2019.html

It's a great ".csv" labeled data-set but unfortunately all of data-set rows labeled as BENIGN. 

I really need a ".csv" labeled android malware data-set composed of MALWARE and BENIGN network flows.

Can anybody help me with this?!

Regards

Mikael

I am reproducing the Drebin malware detection system presented in a paper entitled "DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket". There are many re-implementations of this system in Github; however, the majority of them ignored the feature extraction step that indeed aims to extract the feature introduced in the paper from the APK samples (Android apps). As far as I know, one of the proper re-implementation is "https://github.com/Kenun99/Drebin"; but, the results of extracted features are not the same as what presented in Drebin public repository (https://www.sec.cs.tu-bs.de/~danarp/drebin/download.html).

Anyway, I would be grateful if anyone lets me know that how can I find an accurate re-implementation of this malware detection system?

Is there someone helps me to understand how to build the server of this apk https://lab52.io/blog/complete-dissection-of-an-apk-with-a-suspicious-c2-server/ ?Or at least,is there someone who can give me the server?I tried to disassemble the apk but it is obfuscated and I don’t know how can proceed