Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-10-09Red CanaryChris Brook, Tony Lambert
A taxonomy of Mac stealers: Distinguishing Atomic, Odyssey, and Poseidon
AMOS Odyssey Stealer Poseidon Stealer
2025-08-19Red CanaryChris Brook, Christina Johns, Tyler Edmonds
Patching for persistence: How DripDropper Linux malware moves through the cloud
2025-07-24Red CanaryThe Red Canary Team
Intelligence Insights: July 2025
Broomstick
2025-06-18Red CanaryRed Canary
Mocha Manakin delivers custom NodeJS backdoor via paste and run
Mocha Manakin
2025-03-12Red CanaryRed Canary
2025 Threat Detection Report
HijackLoader Lumma Stealer NetSupportManager RAT
2025-02-12Red CanaryPhil Hagen, Tony Lambert
Defying tunneling: A Wicked approach to detecting malicious network traffic
AsyncRAT DCRat NjRAT XWorm
2024-12-02Red CanaryRed Canary Intelligence
Storm-1811 exploits RMM tools to drop Black Basta ransomware
UNC4393
2024-10-10Red CanaryLaura Brosnan
Apple picking: Bobbing for Atomic Stealer & other macOS malware
AMOS
2024-06-20Red CanaryThe Red Canary Team
Gourav Khandelwal, Akash Chaudhuri, Matthew Mesa, Sagar Patil, Uri Oren, Krithika Ramakrishnan
UNC4393
2023-07-28Red CanaryStef Rand
Drop It Like It's Qbot: Separating malicious droppers, loaders, and crypters from their payloads
CloudEyE QakBot
2023-03-23Red CanaryRed Canary
2023 / 5.0 Threat Dection Report: Techniques, Trend, and Takeaways
2022-05-25Red CanaryAedan Russell
ChromeLoader: a pushy malvertiser
Choziosi Choziosi
2022-05-12Red CanaryLauren Podber, Tony Lambert
The Goot cause: Detecting Gootloader and its follow-on activity
GootLoader Cobalt Strike
2022-05-12Red CanaryLauren Podber, Tony Lambert
Gootloader and Cobalt Strike malware analysis
GootLoader Cobalt Strike
2022-05-05Red CanaryLauren Podber, Stef Rand
Raspberry Robin gets the worm early
Raspberry Robin
2022-03-22Red CanaryRed Canary
2022 Threat Detection Report
FAKEUPDATES Silver Sparrow BazarBackdoor Cobalt Strike GootKit Yellow Cockatoo RAT
2022-03-16Red CanaryBrian Donohue, Laura Brosnan
Uncompromised: When REvil comes knocking
REvil
2022-01-24Red CanaryThe Red Canary Team
Intelligence Insights: January 2022
Blister Conficker
2021-12-16Red CanaryThe Red Canary Team
Intelligence Insights: December 2021
Cobalt Strike QakBot Squirrelwaffle
2021-12-02Red CanaryTony Lambert
KMSPico and Cryptbot: A spicy combo
CryptBot