Masad Stealer’ spyware harvests information from Windows and Android users. It also comes with a full cadre of other malicious capabilities, including the ability to steal cryptocurrency from victims wallets. Masad uses Telegram bots as its command-and-control (C2) hub. Of the more than 1,000 samples Juniper identified operating in the wild as variants of Masad, there were 338 unique Telegram C2 bots, researchers said. The developers have also created a Telegram group for their potential clients, and for tech support.
Source: https://threatpost.com/masad-spyware-telegram-bots/148759/