Malware packer integrates with UPX

Recently while I was analyzing a bunch of samples packed by custom packers, one of them struck me as a bit different than any others I saw before. At first glance, the outer layer of packing is a UPX stub, which is commonly used in malware. Especially when combined with a custom packer, UPX can…

0

Standards and Policies on Packer Use

For those people who missed my presentation at Virus Bulletin this year, I co-presented on the topic of “proper” packer usage.  The idea of a “proper” way to use packers is two-fold: (a) It reduces the prevalence of legitimate packers being used to pack malware. (b) It makes it easier to identify packers which exist…

0