Jump to content
Tuts 4 You

Does anyone have link to serious study about percentage of custom packer


Recommended Posts

I would like to have some statistics about What percentage of malware use custom packer/cryptor to protect itself? I have been googling for a while but could only find technical study of some custom packers. Any help?

Edited by gundamfj
Link to comment
  • 5 weeks later...

I can't say any number but at least half of them. What you can do to know that by yourself is:

  • download some few tera bytes from VirusShare or any other source. 
  • do some fuzzy hashing to filter out very similar samples to partially avoid false statistics and also filter out non PE files.
  • write a small python script which will use yara / peid and store the results for each hash in a database.

You will be knowing how % of samples are not packed, packed with commercial packer, packed with custom packer.


Edited by Noteworthy
Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...