Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)

Stealth Mango is Android malware that has reportedly been used to successfully compromise the mobile devices of government officials, members of the military, medical professionals, and civilians. The iOS malware known as Tangelo is believed to be from the same developer. (Citation: Lookout-StealthMango)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Out of Band Data - T1644 (ec4c4baa-026f-43e8-8f56-58c36f3162dd)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Software Discovery - T1418 (198ce408-1470-45ee-b47f-7056050d4fc2)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Location Tracking - T1430 (99e6295e-741b-4857-b6e5-64989eb039b4)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d)	Attack Pattern	1
Audio Capture - T1429 (6683aa0c-d98a-4f5b-ac57-ca7e9934a760)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Drive-By Compromise - T1456 (fd339382-bfec-4bf0-8d47-1caedc9e7e57)	Attack Pattern	1
Video Capture - T1512 (d8940e76-f9c1-4912-bea6-e21c251370b6)	Attack Pattern	Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	Data from Local System - T1533 (e1c912a9-e305-434b-9172-8a6ce3ec9c4a)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	SMS Control - T1582 (b327a9c0-e709-495c-aa6e-00b042136e2b)	Attack Pattern	1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)	Malware	System Network Configuration Discovery - T1422 (d4536441-1bcc-49fa-80ae-a596ed3f7ffd)	Attack Pattern	1
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002)	Attack Pattern	2
Supply Chain Compromise - T1474 (0d95940f-9583-4e0f-824c-a42c1be47fad)	Attack Pattern	Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc)	Attack Pattern	2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d)	Attack Pattern	2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922)	Attack Pattern	2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e)	Attack Pattern	Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86)	Attack Pattern	2