.. /.Zip

Phishing
Double Click
File Archiver

Contributors:

mr.d0x

Description:

ZIP files are archived files having multiple files inside. It also compresses the files inside. It is often used by attackers to deliver malware.

OS:

Windows
Mac
Linux

Recommendation:

Monitor ZIP files that are delivered as email attachments, especially if they are encrypted.

Resources:

https://www.bleepingcomputer.com/news/security/specially-crafted-zip-files-used-to-bypass-secure-email-gateways/

File Samples:

https://www.joesecurity.org/reports/report-affeafe0002e6aa7f0d03822e3c6fca3.html