Skip to content

Hide Navigation Hide TOC

Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c)

Stealth Mango is Android malware that has reportedly been used to successfully compromise the mobile devices of government officials, members of the military, medical professionals, and civilians. The iOS malware known as Tangelo is believed to be from the same developer. (Citation: Lookout-StealthMango)

Cluster A Galaxy A Cluster B Galaxy B Level
Audio Capture - T1429 (6683aa0c-d98a-4f5b-ac57-ca7e9934a760) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Data from Local System - T1533 (e1c912a9-e305-434b-9172-8a6ce3ec9c4a) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Out of Band Data - T1644 (ec4c4baa-026f-43e8-8f56-58c36f3162dd) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Drive-By Compromise - T1456 (fd339382-bfec-4bf0-8d47-1caedc9e7e57) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002) Attack Pattern 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922) Attack Pattern 1
Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Video Capture - T1512 (d8940e76-f9c1-4912-bea6-e21c251370b6) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware SMS Control - T1582 (b327a9c0-e709-495c-aa6e-00b042136e2b) Attack Pattern 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware Software Discovery - T1418 (198ce408-1470-45ee-b47f-7056050d4fc2) Attack Pattern 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86) Attack Pattern 1
Location Tracking - T1430 (99e6295e-741b-4857-b6e5-64989eb039b4) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc) Attack Pattern Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware 1
Stealth Mango - S0328 (085eb36d-697d-4d9a-bac3-96eb879fe73c) Malware System Network Configuration Discovery - T1422 (d4536441-1bcc-49fa-80ae-a596ed3f7ffd) Attack Pattern 1
SMS Messages - T1636.004 (c6421411-ae61-42bb-9098-73fddb315002) Attack Pattern Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e) Attack Pattern 2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e) Attack Pattern Calendar Entries - T1636.001 (a9fa0d30-a8ff-45bf-922e-7720da0b7922) Attack Pattern 2
Call Log - T1636.002 (1d1b1558-c833-482e-aabb-d07ef6eae63d) Attack Pattern Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e) Attack Pattern 2
Protected User Data - T1636 (11c2c2b7-1fd4-408f-bc2e-fe772ef9df5e) Attack Pattern Contact List - T1636.003 (e0b9ecb8-a7d1-43c7-aa30-8e19c6a92c86) Attack Pattern 2
Supply Chain Compromise - T1474 (0d95940f-9583-4e0f-824c-a42c1be47fad) Attack Pattern Compromise Software Supply Chain - T1474.003 (9558a84e-2d5e-4872-918e-d847494a8ffc) Attack Pattern 2