APT Profile: Blue Mockingbird

Aliases: Blue Mockingbird

Description

[Blue Mockingbird](https://attack.mitre.org/groups/G0108) is a cluster of observed activity involving Monero cryptocurrency-mining payloads in dynamic-link library (DLL) form on Windows systems. The earliest observed Blue Mockingbird tools were created in December 2019.(Citation: RedCanary Mockingbird May 2020)

Techniques Used (TTPs)

Total TTPs: 22

Malware & Tools

Tools: FRP, Mimikatz

← Return to Home ← Back to APT Search