Look up the hash of the zip file to see behavioral reports and network signatures of the command-and-control (C2) servers it contacts.
Often contains scripts designed to exfiltrate Discord tokens , Minecraft session IDs , and browser-saved passwords. rudolf_thelostmc.zip
While there isn't a single "academic paper" on this specific file name, you can find high-quality technical analysis through the following channels: Look up the hash of the zip file
I can guide you through steps for common infostealers. Minecraft session IDs