Research Article
All-in-One Framework for Detection, Unpacking, and Verification for Malware Analysis
Table 5
Comparison of packing detection rates of three techniques and the proposed hybrid approach.
| Packer | Technique | DP-SIG (%) | DP-WR (%) | DP-ENT (%) | Hybrid approach (%) |
| ASPack | | | | | NSPack | | | | | MPRESS | | | | | UPX | | | | | Yoda’s Protector | | | | | MEW | | | | | BeRoEXEPacker | | | | | Packman | | | | | RLPack | | | | | PECompact | | | | | Petite | | | | | JDpack | | | | | Molebox | | | | | eXpressor | | | | | Yoda’s Crypter | | | | | FSG | | | | | exe32pack | | | | | WinUpack | | | | | Neolite | | | | | Average | | | | | Not-Packed | | | | |
|
|