References

Type
Url
Description

technique

https://nodejs.org/

OpenJS Foundation. (n.d.). Node.js. Retrieved June 23, 2020.


technique

https://redcanary.com/blog/clipping-silver-sparrows-wings/

Tony Lambert. (2021, February 18). Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight. Retrieved April 20, 2021.


technique

https://www.sentinelone.com/blog/macos-red-team-calling-apple-apis-without-building-binaries/

Phil Stokes. (2019, December 5). macOS Red Team: Calling Apple APIs Without Building Binaries. Retrieved July 17, 2020.


technique

https://posts.specterops.io/persistent-jxa-66e1c3cd1cf5

Pitt, L. (2020, August 6). Persistent JXA. Retrieved April 14, 2021.


technique

https://attack.mitre.org/techniques/T1059/007


technique

https://www.circl.lu/services/passive-dns/

CIRCL Computer Incident Response Center. (n.d.). Passive DNS. Retrieved October 20, 2020.


technique

https://dnsdumpster.com/

Hacker Target. (n.d.). DNS Dumpster. Retrieved October 20, 2020.


technique

https://attack.mitre.org/techniques/T1590/002


technique

https://www.anomali.com/blog/rocke-evolves-its-arsenal-with-a-new-malware-family-written-in-golang

Anomali Labs. (2019, March 15). Rocke Evolves Its Arsenal With a New Malware Family Written in Golang. Retrieved April 24, 2019.


technique

https://www.bleepingcomputer.com/news/security/malware-found-in-arch-linux-aur-package-repository/

Catalin Cimpanu. (2018, July 10). Malware Found in Arch Linux AUR Package Repository. Retrieved April 23, 2019.