Explanation

This page shows a different type of analysis done to each of the different binaries that we gather and have gathered in. Most malicious programs are packed with different technologies in the hopes of obfuscating their existing from different detection mechanisms, but to also increase the difficulty in either reverse engineering the binary, or to analyze what exact functions and purposes it may have. While there are many well used and semi-public packers in use, there is a trend for more private and custom packers being used to increase the effectiveness of their concealment.

The tool that we use to make the determination for identification is from Sigbuster by Toni Koivunen (toni <AT> teamfurry.com)/Teamfurry.com. Sigbuster is a cross-platform tool for detecting exe-packers.

↑ Contents

Updates

The graph are updated once a day.

↑ Contents

Charts and Graphs

Daily Statistics (Last 24-hours)

---

Weekly Statistics (Last 7-Days)

---

Monthly Statistics (Last 30-days)

---

Bi-Monthly Statistics (Last 60-days)

---

Tri-Monthly Statistics (Last 90-days)

---

Semi-Yearly Statistics (Last 180-days)

Packer	Count	Percent
Allaple_Polymorphic_Packer vna	314011	47.99%
ASPack vna	147346	22.52%
UPX All_Versions	94944	14.51%
PE_Compact v2.X	22444	3.43%
NullSoft_NSIS Generic	11688	1.79%
UPX V2.9-3.X	11335	1.73%
NullSoft_PiMP_SFX vna	10785	1.65%
ASPack v2.12	8296	1.27%
unknown_5	2706	0.41%
ASProtect v1.2x-1.3x	2532	0.39%

---

Yearly Statistics (Last 12-Months)

Packer	Count	Percent
Allaple_Polymorphic_Packer vna	4289872	60.32%
UPX All_Versions	1375011	19.34%
NullSoft_NSIS Generic	459785	6.47%
ASPack vna	410875	5.78%
PE_Compact v2.X	121322	1.71%
NullSoft_PiMP_SFX vna	101692	1.43%
ASPack v2.12	59373	0.83%
UPX V2.9-3.X	55584	0.78%
Inno_Setup v2.0.1	21380	0.30%
Xtreme_Protector v1.05	17953	0.25%

↑ Contents

<< Sandbox Graphs | Statistics | Scans >>