Stealth Mango and Tangelo

Also known as: Stealth Mango and Tangelo, Stealth Mango, Stealth Mango & Tangelo

This threat actor targets organizations in the satellite communications, telecommunications, geospatial-imaging, and defense sectors in the United States and Southeast Asia for espionage purposes.

🌍 Country Pakistan

⚡ Risk Level High

🎯 Incident Type Espionage

Government Civil society

Targeted Victims

Pakistan Iraq Australia Afghanistan United Arab Emirates Germany India United States

Introduction

This threat actor targets organizations in the satellite communications, telecommunications, geospatial-imaging, and defense sectors in the United States and Southeast Asia for espionage purposes.

Activities and Tactics

Targeted Sectors: Government, Civil society

Country of Origin: 🇵🇰 Pakistan

Risk Level: High

Incident Type: Espionage

Suspected Victims: Pakistan, Iraq, Australia, Afghanistan, United Arab Emirates, Germany, India, United States

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

UNITEDRAKE
Stealth Mango:

Attribution and Evidence

Country of Origin: Pakistan Additional attribution information pending cataloguing.

References

References pending cataloguing.

Source Attribution

Structured source: APT Groups & Operations Spreadsheet

Data sourced from MISP Galaxy threat-actor cluster (CC0 licensed)

View upstream source record

License: CC BY-NC-SA 3.0

Additional source provenance

APT Groups & Operations Dataset
malpedia Source record Dataset
misp galaxy Dataset

Source and license policy

🔍 Quick Filters

Top Countries

Risk Distribution

High

161

Critical

Low

Medium