Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)

Stealth Mango is Android malware that has reportedly been used to successfully compromise the mobile devices of government officials, members of the military, medical professionals, and civilians. The iOS malware known as Tangelo is believed to be from the same developer. (Citation: Lookout-StealthMango)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Out of Band Data - T1644 (ec4c4baa-026f-43e8-8f56-58c36f3162dd)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Video Capture - T1512 (d8940e76-f9c1-4912-bea6-e21c251370b6)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	SMS Control - T1582 (b327a9c0-e709-495c-aa6e-00b042136e2b)	Attack Pattern	1
Software Discovery - T1418 (198ce408-1470-45ee-b47f-7056050d4fc2)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Location Tracking - T1430 (99e6295e-741b-4857-b6e5-64989eb039b4)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
System Network Configuration Discovery - T1422 (d4536441-1bcc-49fa-80ae-a596ed3f7ffd)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Data from Local System - T1533 (e1c912a9-e305-434b-9172-8a6ce3ec9c4a)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Audio Capture - T1429 (6683aa0c-d98a-4f5b-ac57-ca7e9934a760)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Drive-By Compromise - T1456 (fd339382-bfec-4bf0-8d47-1caedc9e7e57)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002)	Attack Pattern	1
Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922)	Attack Pattern	Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d)	Attack Pattern	2
Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86)	Attack Pattern	Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	2
Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc)	Attack Pattern	Supply Chain Compromise - T1474 (0d95940f-9583-4e0f-824c-a42c1be47fad)	Attack Pattern	2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002)	Attack Pattern	2