Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)

Skygofree is Android spyware that is believed to have been developed in 2014 and used through at least 2017. (Citation: Kaspersky-Skygofree)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Out of Band Data - T1644 (ec4c4baa-026f-43e8-8f56-58c36f3162dd)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Stored Application Data - T1409 (702055ac-4e54-4ae9-9527-e23a38e0b160)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Download New Code at Runtime - T1407 (6c49d50f-494d-4150-b774-a655022d20a6)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Location Tracking - T1430 (99e6295e-741b-4857-b6e5-64989eb039b4)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	Audio Capture - T1429 (6683aa0c-d98a-4f5b-ac57-ca7e9934a760)	Attack Pattern	1
Web Protocols - T1437.001 (2282a98b-5049-4f61-9381-55baca7c1add)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	Exploitation for Privilege Escalation - T1404 (351c0927-2fc1-4a2c-ad84-cbbee7eb8172)	Attack Pattern	1
Video Capture - T1512 (d8940e76-f9c1-4912-bea6-e21c251370b6)	Attack Pattern	Skygofree - S0327 (3a913bac-4fae-4d0e-bca8-cae452f1599b)	Malware	1
Application Layer Protocol - T1437 (6a3f6490-9c44-40de-b059-e5940f246673)	Attack Pattern	Web Protocols - T1437.001 (2282a98b-5049-4f61-9381-55baca7c1add)	Attack Pattern	2