Hogfarming.7z <TRUSTED ✓>

: Launching the primary file triggers the sideloading of a malicious component (often disguised as a library like MpsSvc.dll or similar).

: The file is primarily distributed via Spear Phishing emails. These emails often use topical lures related to regional geopolitics or government directives to entice victims into downloading and extracting the archive. Analysis of the Infection Chain HogFarming.7z

: The malware modifies registry keys or creates scheduled tasks to ensure it remains active after system reboots. : Launching the primary file triggers the sideloading

: Once the user extracts "HogFarming.7z", they find what appears to be a legitimate document or application. HogFarming.7z