Hogfarming.7z Page

: The file is primarily distributed via Spear Phishing emails. These emails often use topical lures related to regional geopolitics or government directives to entice victims into downloading and extracting the archive. Analysis of the Infection Chain

Based on available threat intelligence and technical databases, is a compressed archive associated with malicious activity, specifically linked to Earth Preta (also known as Mustang Panda), a Chinese-based Advanced Persistent Threat (APT) group . This file has been identified as a delivery vehicle for malware in cyberespionage campaigns targeting government and research entities. Technical Overview HogFarming.7z

: Educate staff on the risks of opening unexpected compressed archives, even if the sender appears legitimate. : The file is primarily distributed via Spear

Security teams should monitor for the following indicators related to this specific file name and associated threat actor behavior: : HogFarming.7z This file has been identified as a delivery

: Once the user extracts "HogFarming.7z", they find what appears to be a legitimate document or application.

: Deploy EDR (Endpoint Detection and Response) solutions to monitor for unusual DLL loading behavior from legitimate system binaries.

0 / 10

Cancel

Rate

Select static lists

Create New Static List

Save

Cancel

Static List Name

Choose how you want to open this title.

Open App

Open Web

Cancel

Confirm

Cancel

Confirm

Cancel

Delete

Cancel

Delete

0 / 10

Rate

Cancel