Tutorial On Zipping & Sending Archive Files.

Hey Guys ! :slight_smile:

There are 2 ways to zip and send malware, My personal recommendation is to use 7-Zip.

In conjunction to Reporting False Postives/Suspicious Files & Submitting them to the Lab

Description: 7-Zip is an open source file archiver predominantly for the Microsoft Windows operating system. It operates either as a command line program or with a graphical user interface. It also features integration with the Windows shell environment. 7-Zip is free software, distributed under the GNU LGPL license.

  1. Download 7-Zip & Install it.

  2. Go to the directory the where the False Positive or Suspicious File is (Desktop, Documents, Program Files, etc).

  3. Right Click on it, Choose 7-Zip & Add to Archive…

4.You will now see the 7-Zip Window for Archiving. Make sure the Archive format is Zip & Under Encryption type the Password infected & Re-Enter it. When done click OK.

5.A Zip Folder will then be created to that dictionary where the original file was. Then just send it! :slight_smile:

That’s it! ;D Yes 7-Zip is Free.

And below is how to use the built in OS Zip functionality, for those who don’t want to download 7-Zip. I have heard some ISP’s however block the OS-based zips, And this is only for Windows XP:

To submit suspect files for analyses using only Windows XP

  1. In Windows Explorer, open the folder that contains the suspect malicious software files.
  2. Right-click a blank area in the window, point to New, and then click Compressed (zipped) Folder.
  3. Type malware.zip to name the new archive file, and then press ENTER.
  4. Drop the suspected malicious software files into the archive file as you would drop them into a typical Windows folder.
  5. Double-click the archive file.
  6. On the File menu, click Add a Password.
  7. In the Password box, type infected
  8. In the Confirm Password box, retype infected and then click OK

Cheers,
Josh