Moscow.rar →

❗ It is designed to silently drop malware onto your system even if you only preview the archive. Technical Overview: CVE-2025-8088

The file "moscow.rar" is associated with targeted phishing campaigns conducted by —specifically the group RomCom (also known as Storm-0978) . This malicious archive was used in mid-2025 to exploit a critical zero-day vulnerability in WinRAR. moscow.rar

The core of the attack relies on , a high-severity path traversal vulnerability. WinRAR vulnerability exploited by two different groups ❗ It is designed to silently drop malware