Abstract: The present invention relates to an executable file unpacking system and method for static analysis of a malicious code, in which the method according to the present invention includes: a pre-analysis step of receiving an input of a file to be detected, identifying whether the received file is a binary file, and extracting a hash value when the file to be detected is a binary file; a step of searching a database for a malicious code hash value corresponding to the extracted hash value; a step of, when the malicious code hash value corresponding to the extracted hash value is not found, detecting a packer for the file to be detected using a signature-based packer detection module; and a step of, when the packer for the file to be detected is not detected at the signature-based packer detection module, guessing whether the file is packed or not using an entropy-based packer detection module.