How to Scan ZIP and RAR Files for Malware Before Extracting

Got a ZIP or RAR from the web?
Before opening it, scan it — because archives often hide threats inside.

Here’s how to do it safely and correctly.

---

✅ 1. Use antivirus right-click scan

• Right-click the .zip or .rar file

• Click “Scan with…” (e.g., Windows Defender, Avast, Kaspersky)

✅ Detects known malware inside archives without extracting.

---

✅ 2. Use 7-Zip to view contents first

• Install 7-Zip

• Right-click → 7-Zip → “Open archive”

• Don’t extract — just inspect filenames and extensions

✅ Look for suspicious entries:

• invoice.pdf.exe

• Hidden folders with scripts

• Files named setup.scr, autorun.bat

---

✅ 3. Upload archive to VirusTotal

• https://www.virustotal.com → Upload the archive

• It scans embedded files individually

✅ Especially useful for email attachments or third-party downloads.

---

✅ 4. Beware of password-protected ZIPs

If a ZIP asks for a password:

• Ask yourself: where did you get it?

• Why is it protected?

⚠️ Malware is often shared this way to bypass scanners.

---

✅ 5. Extract to a temporary folder

If you must extract:

• Create a new empty folder

• Extract into that

• Then scan the extracted files again

✅ Don’t extract straight to Downloads or Desktop.

---

Key points to remember

• Always scan archives before opening

• Use 7-Zip to inspect without extracting

• Passworded ZIPs = extra caution

• VirusTotal handles archive analysis well

• Extract to isolated folders for safety