We also now have an FPGA accelerated Resnet-50 as a service on Azure with more models in the pipeline. (I work on the Azure Machine Learning side of this stuff)
No, AV has capabilities much more sophisticated then that, however from what I understand, within the malware analysis community specific samples are generally identified with their hash. In addition, if the hash of a file is known-bad, you can skip all the binary pattern matching and heuristics and stuff.
https://www.microsoft.com/en-us/research/project/project-cat...
We also now have an FPGA accelerated Resnet-50 as a service on Azure with more models in the pipeline. (I work on the Azure Machine Learning side of this stuff)