: It is frequently flagged as a Downloader or Trojan . Such files are typically delivered via spam emails disguised as legitimate invoices, legal notifications, or tax documents related to Brazil.

Below is a summary of the risks and characteristics associated with this file based on common threat intelligence patterns:

The file is primarily identified in cybersecurity contexts as a malicious archive used in phishing campaigns , specifically targeting financial credentials or distributing malware like Grandoreiro .