Archive Abuse beginner · 5 minutes

ZIP Archive Abuse

Malicious payloads embedded in nested ZIP archives to evade flat-file scanning. MetaDefender Archive Extraction recursively extracts and scans every layer.

Attack Technique

Archive Nesting

MITRE ATT&CK

T1027

Platforms

windowslinuxmacos

File Types

.zip.rar.7z

MetaDefender Capabilities

Archive Extraction Metascan Engines

GitHub Download Demo