Let us wait for some answers first.

Heuristic analysis has proved to be a successful way to detect new viruses. The biggest disadvantage of heuristic analyzer based scanners is that they often find false positives, which is not cost-effective for users. In some ways, however, the heuristic analyzer is a real benefit.
quote taken from http://computervirus.uw.hu/ch11lev1sec6.html t
As I said before the Suricata IDS alert is a file identity rule alert. The find could also because of an old zip back-up file. In that case a JojoDiff utility scan could be worth while. Let us see what it brings.

polonus