technique
https://nodejs.org/
OpenJS Foundation. (n.d.). Node.js. Retrieved June 23, 2020.
technique
https://redcanary.com/blog/clipping-silver-sparrows-wings/
Tony Lambert. (2021, February 18). Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight. Retrieved April 20, 2021.
technique
https://www.sentinelone.com/blog/macos-red-team-calling-apple-apis-without-building-binaries/
Phil Stokes. (2019, December 5). macOS Red Team: Calling Apple APIs Without Building Binaries. Retrieved July 17, 2020.
technique
https://posts.specterops.io/persistent-jxa-66e1c3cd1cf5
Pitt, L. (2020, August 6). Persistent JXA. Retrieved April 14, 2021.
technique
https://attack.mitre.org/techniques/T1059/007
technique
https://www.circl.lu/services/passive-dns/
CIRCL Computer Incident Response Center. (n.d.). Passive DNS. Retrieved October 20, 2020.
technique
https://dnsdumpster.com/
Hacker Target. (n.d.). DNS Dumpster. Retrieved October 20, 2020.
technique
https://attack.mitre.org/techniques/T1590/002
technique
https://www.anomali.com/blog/rocke-evolves-its-arsenal-with-a-new-malware-family-written-in-golang
Anomali Labs. (2019, March 15). Rocke Evolves Its Arsenal With a New Malware Family Written in Golang. Retrieved April 24, 2019.
technique
https://www.bleepingcomputer.com/news/security/malware-found-in-arch-linux-aur-package-repository/
Catalin Cimpanu. (2018, July 10). Malware Found in Arch Linux AUR Package Repository. Retrieved April 23, 2019.