I was wondering... Hmmm... Maybe I am Wrong...
But more unpackers means less signatures to detect a malware?
Lets say that malware x, has been packed with ten diferent packers creating ten different files (versions of malware)...If Avast has the 10 unpackers, it will only need 1 signature to detect them all. The unpackers will extract the malware from the pack, and the signature will detect it inside.
In the other way, if avast doesnt have some of the unpackers for some of the files that were packed, it will have to create another signature to detect each sample that doesnt have the related unpacker in avast, even the malware being the same, just packed with a different packer.
What I see is that with more packers, the pro active protection increase, as it will not be necessary to receive another update with a new signature of a know malware that was only packed with some other packer...
Am I right? This make sense?
Thanks for your time,
Elminster