mostlyfireproof
commented
1 year ago Narrowed the problem down to zips encrypted with AES256. The Python zipfile module does not work with this encryption.
For example, samples from MalwareBazaar seem to use this encryption
The scanner will crash if trying to scan downloaded password protected zip files. It gives a NotImplementedError, see below screenshot. I'm not really sure if there is a way to fix this or if this is the zip library issue. Note: it can scan a non-password protected zip file of the same zip software perfectly fine.