'Specify the maximum depth to scan archive files' (ArchiveMaxDepth Min:0 Max:4294967295) This policy setting allows you to configure the maximum directory depth level into which archive files such as .ZIP or .CAB are unpacked during scanning. The default directory depth level is 0. If you enable this setting, archive files will be scanned to the directory depth level specified. If you disable or do not configure this setting, archive files will be scanned to the default directory depth level. Counter Measure: Configure this setting depending on your organization's requirements. Potential Impact: Scanning can impact performance.

[max depth to scan]

(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsWindows DefenderScanSpecify the maximum depth to scan archive files (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindows DefenderScanArchiveMaxDepth