Files like this are often used to deploy Lumma Stealer , which can exfiltrate your browser passwords, cryptocurrency wallets, and session cookies.

Immediately cut your connection to prevent the malware from sending your data to an attacker's server .

The name likely mimics a legitimate "Power" utility or a holiday gift/promotion to encourage clicks.

These files are commonly distributed via phishing emails disguised as invoices or urgent notifications. Recommended Actions

You can submit suspicious files to Microsoft Security Intelligence for professional analysis.

If you are a researcher, only examine the file in a sandbox environment like ANY.RUN or VirusTotal to avoid infecting your host machine.

Submit a file for malware analysis - Microsoft Security Intelligence