On this page... (hide)

Explanation

This page shows a different type of analysis done to each of the different binaries that we gather and have gathered in. Most malicious programs are packed with different technologies in the hopes of obfuscating their existing from different detection mechanisms, but to also increase the difficulty in either reverse engineering the binary, or to analyze what exact functions and purposes it may have. While there are many well used and semi-public packers in use, there is a trend for more private and custom packers being used to increase the effectiveness of their concealment.

The tool that we use to make the determination for identification is from Sigbuster by Toni Koivunen (toni <AT> teamfurry.com)/Teamfurry.com. Sigbuster is a cross-platform tool for detecting exe-packers.

Notes

There are minor discrepancies in the percentages, and this is an artifact from the numbers being compared to a set of five in the pie chart verses a set of ten in the table.

↑ Contents

Updates

The graph are updated once a day.

↑ Contents

Charts and Graphs

Daily Statistics (Last 24-hours)

Packer Count Percent
UPX All_Versions 4873 45.46%
NullSoft_NSIS Generic 1116 10.41%
NullSoft_PiMP_SFX vna 1070 9.98%
Xtreme_Protector v1.05 785 7.32%
UPX V2.9-3.X 462 4.31%
Upack v0.24~v0.28alpha 444 4.14%
InstallShield v2000 377 3.52%
Unknown_33 214 2.00%
FSG V1.31 196 1.83%
PE_Compact v2.X 189 1.76%

Weekly Statistics (Last 7-Days)

Packer Count Percent
UPX All_Versions 96312 37.81%
MEW v11SEv1.2 63776 25.04%
NullSoft_PiMP_SFX vna 18259 7.17%
Unknown_33 16800 6.60%
NullSoft_NSIS Generic 11238 4.41%
UPX V2.9-3.X 8212 3.22%
Inno_Setup v2.0.1 6899 2.71%
NsPack All_Versions 5616 2.20%
Upack v0.24~v0.28alpha 3918 1.54%
InstallShield v2000 3193 1.25%

Monthly Statistics (Last 30-days)

Packer Count Percent
UPX All_Versions 329952 45.69%
NullSoft_PiMP_SFX vna 72192 10.00%
MEW v11SEv1.2 65703 9.10%
UPX V2.9-3.X 38332 5.31%
NullSoft_NSIS Generic 24907 3.45%
Inno_Setup v2.0.1 23655 3.28%
Allaple_Polymorphic_Packer vna 23587 3.27%
Unknown_33 21516 2.98%
NsPack All_Versions 13273 1.84%
Xtreme_Protector v1.05 9790 1.36%

Bi-Monthly Statistics (Last 60-days)

Packer Count Percent
UPX All_Versions 1094396 46.24%
NullSoft_PiMP_SFX vna 203647 8.60%
UPX V2.9-3.X 102420 4.33%
Swizzor_test vna 101408 4.28%
Inno_Setup v2.0.1 69527 2.94%
MEW v11SEv1.2 68825 2.91%
NullSoft_NSIS Generic 68743 2.90%
NsPack All_Versions 57265 2.42%
Allaple_Polymorphic_Packer vna 54104 2.29%
InstallShield v2000 36535 1.54%

Tri-Monthly Statistics (Last 90-days)

Packer Count Percent
UPX All_Versions 1560339 45.64%
NullSoft_PiMP_SFX vna 256118 7.49%
UPX V2.9-3.X 148588 4.35%
Swizzor_test vna 142109 4.16%
NsPack All_Versions 93940 2.75%
Inno_Setup v2.0.1 92198 2.70%
Upack v0.28-0.39(relocatedimagebase-Delphi,.NET,DLLorsomethingelse:) 82603 2.42%
NullSoft_NSIS Generic 79690 2.33%
MEW v11SEv1.2 72830 2.13%
Allaple_Polymorphic_Packer vna 70242 2.05%

Semi-Yearly Statistics (Last 180-days)

Packer Count Percent
UPX All_Versions 2190103 41.40%
ASPack v2.12 700735 13.25%
NullSoft_PiMP_SFX vna 353409 6.68%
UPX V2.9-3.X 212467 4.02%
Swizzor_test vna 146625 2.77%
Allaple_Polymorphic_Packer vna 144292 2.73%
NsPack All_Versions 131324 2.48%
Inno_Setup v2.0.1 116531 2.20%
NullSoft_NSIS Generic 109339 2.07%
Upack v0.28-0.39(relocatedimagebase-Delphi,.NET,DLLorsomethingelse:) 95151 1.80%

Yearly Statistics (Last 12-Months)

Packer Count Percent
UPX All_Versions 4795896 49.55%
ASPack v2.12 783274 8.09%
NullSoft_PiMP_SFX vna 769448 7.95%
UPX V2.9-3.X 376321 3.89%
Allaple_Polymorphic_Packer vna 338966 3.50%
NsPack All_Versions 198739 2.05%
InstallShield v2000 192226 1.99%
Swizzor_test vna 184809 1.91%
Upack v0.28-0.39(relocatedimagebase-Delphi,.NET,DLLorsomethingelse:) 174065 1.80%
NullSoft_NSIS Generic 167767 1.73%

↑ Contents

<< Sandbox Graphs | Statistics | Scans >>