Never open a .rar file from an unknown or suspicious sender.

The "From" field may show a legitimate company name, but the actual email address behind it is a string of random characters or from an unrelated domain.

It claims you must open the attachment immediately to avoid a fine or a delivery failure.

The email typically masquerades as a legitimate business communication, such as an overdue invoice , a shipping notification , or a quotation request .