Hogfarming.7z 💯

Based on available threat intelligence and technical databases, is a compressed archive associated with malicious activity, specifically linked to Earth Preta (also known as Mustang Panda), a Chinese-based Advanced Persistent Threat (APT) group . This file has been identified as a delivery vehicle for malware in cyberespionage campaigns targeting government and research entities. Technical Overview

: Government agencies, NGOs, and telecommunications sectors in Southeast Asia and Europe. HogFarming.7z

: Deploy EDR (Endpoint Detection and Response) solutions to monitor for unusual DLL loading behavior from legitimate system binaries. : Deploy EDR (Endpoint Detection and Response) solutions

: Launching the primary file triggers the sideloading of a malicious component (often disguised as a library like MpsSvc.dll or similar). even if the sender appears legitimate.

: Educate staff on the risks of opening unexpected compressed archives, even if the sender appears legitimate.