: If the file is a known sample, review sandboxed execution reports to identify:

: List the files inside the ZIP without executing them. Look for suspicious extensions like .exe , .vbs , .js , or hidden double extensions (e.g., reward_details.pdf.exe ).

: Use an isolated virtual machine (sandbox) with no network access to prevent potential malware from communicating with an attacker. Static Analysis :

: IP addresses, domains, or file paths created.

: Common findings for this naming scheme include InfoStealers or Remote Access Trojans (RATs). Summary of Findings (Template) File Name Phoebus_2022-07_reward_12.zip Likely Intent Phishing or Malware Delivery Source Context Often used in security training or simulated attacks. Recommendation Delete immediately and report to your IT Security Team. What is Threat Intelligence? | IBM