Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 24fd5717-1a80-4002-a4da-47741f2fbcdd |
| Fingerprint | c4ad87d6df4c304c4f7b32641177699c7fdbf6663cb8b8becd6ddebc892afc19 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 17, 2023, 5:45 p.m. |
| Added to db | Feb. 7, 2024, 7:31 p.m. |
| Last updated | Aug. 31, 2024, 2:34 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 61/4/25 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 20 | cve-2023-37580 |
|
| Details | Domain | 3 | obsorth.opwtjnpoc.ml |
|
| Details | Domain | 3 | applicationdevsoc.com |
|
| Details | Domain | 4 | ntcpk.org |
|
| Details | Domain | 55 | blog.google |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | Domain | 23 | wiki.zimbra.com |
|
| Details | File | 3 | pqymscxwybwjpios.js |
|
| Details | File | 1 | der.js |
|
| Details | File | 16 | auth.js |
|
| Details | MITRE ATT&CK Techniques | 145 | T1588 |
|
| Details | MITRE ATT&CK Techniques | 110 | T1588.006 |
|
| Details | MITRE ATT&CK Techniques | 60 | T1588.005 |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 116 | T1134 |
|
| Details | MITRE ATT&CK Techniques | 542 | T1190 |
|
| Details | Url | 3 | https://obsorth.opwtjnpoc.ml/pqymscxwybwjpios.js |
|
| Details | Url | 1 | https://applicationdevsoc.com/zimbramalwaredefender/zimbradefen |
|
| Details | Url | 3 | https://applicationdevsoc.com/tndgt/auth.js |
|
| Details | Url | 1 | https://blog.google/threat-analysis-group/zimbra-0-day-used-to-target-international- |
|
| Details | Url | 1 | https://www.hivepro.com/threat-advisory/zimbra-fixes-a-zero-day-vulnerability-exploited-in- |
|
| Details | Url | 1 | https://www.hivepro.com/threat-advisory/winter-vivern-with-pro-russian-objectives-targets- |
|
| Details | Url | 1 | https://wiki.zimbra.com/wiki/zimbra_releases/8.8.15/p41 |
|
| Details | Url | 7 | https://wiki.zimbra.com/wiki/security_center |