Alternate Data Streams

This is an NTFS(New Technology File System) file attribute and was designed to provide compatibility with the MacOS HFS(Hierarchical FIle System)

Attackers can use ADS to hide malicious code or executables in legitimate files in order to evade detection

This technique is used to evade basic signature based AVs and static scanning tools