On this page... (hide)

Explanation

This page shows a different type of analysis done to each of the different binaries that we gather and have gathered in. Most malicious programs are packed with different technologies in the hopes of obfuscating their existing from different detection mechanisms, but to also increase the difficulty in either reverse engineering the binary, or to analyze what exact functions and purposes it may have. While there are many well used and semi-public packers in use, there is a trend for more private and custom packers being used to increase the effectiveness of their concealment.

The tool that we use to make the determination for identification is from Sigbuster by Toni Koivunen (toni <AT> teamfurry.com)/Teamfurry.com. Sigbuster is a cross-platform tool for detecting exe-packers.

Notes

There are minor discrepancies in the percentages, and this is an artifact from the numbers being compared to a set of five in the pie chart verses a set of ten in the table.

↑ Contents

Updates

The graph are updated once a day.

↑ Contents

Charts and Graphs

Daily Statistics (Last 24-hours)

Packer Count Percent
UPX All_Versions 35652 77.41%
NullSoft_NSIS Generic 8034 17.44%
NullSoft_PiMP_SFX vna 328 0.71%
PE_Compact V2.X 256 0.56%
ASPack v2.12 196 0.43%
UPX V2.9-3.X 139 0.30%
Xtreme_Protector v1.05 132 0.29%
Inno_Setup v2.0.1 121 0.26%
InstallShield v2000 112 0.24%
FSG V1.0-1.2 110 0.24%

Weekly Statistics (Last 7-Days)

Packer Count Percent
UPX All_Versions 258618 77.15%
NullSoft_NSIS Generic 53840 16.06%
NullSoft_PiMP_SFX vna 3128 0.93%
PE_Compact V2.X 2504 0.75%
ASPack v2.12 2022 0.60%
UPX V2.9-3.X 1765 0.53%
NsPack All_Versions 1031 0.31%
InstallShield v2000 970 0.29%
FSG V1.0-1.2 914 0.27%
Allaple_Polymorphic_Packer vna 830 0.25%

Monthly Statistics (Last 30-days)

Packer Count Percent
UPX All_Versions 1062106 74.69%
NullSoft_NSIS Generic 275838 19.40%
NullSoft_PiMP_SFX vna 14486 1.02%
PE_Compact v2.X 8725 0.61%
ASPack v2.12 6690 0.47%
Xtreme_Protector v1.05 5319 0.37%
UPX V2.9-3.X 4969 0.35%
NsPack All_Versions 3289 0.23%
FSG V1.0-1.2 2823 0.20%
InstallShield v2000 2791 0.20%

Bi-Monthly Statistics (Last 60-days)

Packer Count Percent
UPX All_Versions 2091999 75.92%
NullSoft_NSIS Generic 502436 18.23%
NullSoft_PiMP_SFX vna 23389 0.85%
PE_Compact V2.X 14718 0.53%
ASPack v2.12 14502 0.53%
Xtreme_Protector v1.05 14256 0.52%
UPX V2.9-3.X 8247 0.30%
FSG V1.0-1.2 6567 0.24%
Allaple_Polymorphic_Packer vna 5769 0.21%
ASPack v2.1 5376 0.20%

Tri-Monthly Statistics (Last 90-days)

Packer Count Percent
UPX All_Versions 2158369 71.03%
NullSoft_NSIS Generic 505577 16.64%
NullSoft_PiMP_SFX vna 57334 1.89%
Allaple_Polymorphic_Packer vna 54149 1.78%
ASPack v2.12 26165 0.86%
tElock v0.98 23559 0.78%
PE_Compact v2.X 23116 0.76%
Xtreme_Protector v1.05 15641 0.51%
UPX V2.9-3.X 14879 0.49%
FSG V1.0-1.2 12046 0.40%

Semi-Yearly Statistics (Last 180-days)

Packer Count Percent
UPX All_Versions 3667367 69.55%
NullSoft_NSIS Generic 793867 15.06%
Allaple_Polymorphic_Packer vna 156934 2.98%
ASPack v2.1 114242 2.17%
NullSoft_PiMP_SFX vna 75232 1.43%
tElock v0.98 69748 1.32%
ASPack v2.12 44643 0.85%
PE_Compact v2.X 36085 0.68%
UPX V2.9-3.X 26835 0.51%
Swizzor_test vna 23020 0.44%

Yearly Statistics (Last 12-Months)

Packer Count Percent
UPX All_Versions 5142184 64.89%
NullSoft_NSIS Generic 1066720 13.46%
ASPack v2.1 351466 4.44%
Allaple_Polymorphic_Packer vna 327595 4.13%
PE_Compact v2.X 109401 1.38%
Swizzor_test vna 101770 1.28%
NullSoft_PiMP_SFX vna 100151 1.26%
UPX V2.9-3.X 98708 1.25%
ASPack v2.12 77633 0.98%
tElock v0.98 72462 0.91%

↑ Contents

<< Sandbox Graphs | Statistics | Scans >>