Question 1

What is G0108 — Blue Mockingbird?

Accepted Answer

[Blue Mockingbird](https://attack.mitre.org/groups/G0108) is a cluster of observed activity involving Monero cryptocurrency-mining payloads in dynamic-link library (DLL) form on Windows systems.

Question 2

What is the authoritative source for G0108?

Accepted Answer

Blue Mockingbird (G0108) is catalogued in MITRE ATT&CK Enterprise and curated for EU compliance use cases by SQUR.

G0108Blue Mockingbird

Description

References

Related by meaning· 6