Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 4fee708c-3880-4432-8423-541df19cba59 |
| Fingerprint | dfd202492915cded8afd0872752621f9a7ba504808ce87e541c561bbd169ebec |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 25, 2024, 4:12 p.m. |
| Added to db | Feb. 7, 2024, 7:43 p.m. |
| Last updated | Aug. 31, 2024, 2:59 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 43/2/24 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 6 | cve-2024-0204 |
|
| Details | CVE | 115 | cve-2023-0669 |
|
| Details | Domain | 24 | www.horizon3.ai |
|
| Details | Domain | 5 | beta.shodan.io |
|
| Details | Domain | 34 | packetstormsecurity.com |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | Domain | 7 | www.fortra.com |
|
| Details | File | 155 | horizon3.ai |
|
| Details | File | 1 | authentication-bypass.html |
|
| Details | Github username | 11 | horizon3ai |
|
| Details | MITRE ATT&CK Techniques | 60 | T1588.005 |
|
| Details | MITRE ATT&CK Techniques | 110 | T1588.006 |
|
| Details | MITRE ATT&CK Techniques | 30 | T1211 |
|
| Details | MITRE ATT&CK Techniques | 542 | T1190 |
|
| Details | MITRE ATT&CK Techniques | 208 | T1068 |
|
| Details | MITRE ATT&CK Techniques | 145 | T1588 |
|
| Details | MITRE ATT&CK Techniques | 33 | T1556 |
|
| Details | Url | 1 | https://www.horizon3.ai/cve-2024-0204-fortra-goanywhere-mft-authentication- |
|
| Details | Url | 1 | https://beta.shodan.io/search?query/html:"invalidbrowser.xhtml |
|
| Details | Url | 1 | https://packetstormsecurity.com/files/related/176683/goanywhere-mft- |
|
| Details | Url | 1 | https://github.com/horizon3ai/cve-2024-0204 |
|
| Details | Url | 1 | https://www.hivepro.com/clop-ransomware-group-claims-responsibility-for- |
|
| Details | Url | 1 | https://www.fortra.com/security/advisory/fi-2024-001 |