: Upon extraction and execution of the executable file contained within, the malware attempts to steal sensitive information from the host machine, including browser credentials, keystrokes, and system metadata.

: Once active, it communicates with a Command and Control (C2) server to exfiltrate stolen data, often using SMTP, FTP, or HTTP protocols. Recommendations

: Permanently delete the archive and empty your system's recycle bin.

: Trojan/Spyware (commonly associated with the Agent Tesla or Formbook families).