New Golang malware variant uses Telegram as its command and control channel!
New Golang malware variant uses Telegram as its command and control channel!
The malware acts as a backdoor and can execute various commands, including running PowerShell commands, taking screenshots, and self-destructing.
The malware is believed to be of Russian origin and is still under development, but is fully functional.
The researchers note that using cloud apps like Telegram as C2 channels is an effective approach for attackers, as it is easy to set up and difficult for defenders to detect.