Archive / .ZIP malware analysis — malicious · 1b0ae0440aa2f1f7

MALICIOUS

Archive / .ZIP

117.5 KB First seen: 2026-05-13

MD5: 21bd5c046f1cf4efa874a456cabca39f SHA-1: d38e7f8dbea5d582dfb7087c96d0c4cc35c61550 SHA-256: 1b0ae0440aa2f1f79952e331944a22e2ba01246b46c5ecdd45eb4b2cc1c8047e

60 Risk Score

Heuristics 1

Archive bundles a malicious executable: ExampleDll.dll critical ARCHIVE_MALICIOUS_EXECUTABLE

The archive contains a native PE (Windows executable) member 'ExampleDll.dll' that ClamAV identified as malware (Detected: Win.Exploit.CVE_2015_4446-1). Bundling an executable payload alongside documents is a classic dropper / phishing delivery pattern.

Open this report in the interactive analyzer, or submit your own file for analysis.