Malware development trick 41: Stealing data via legit VirusTotal API. Simple C example

﷽

Hello, cybersecurity enthusiasts and white hackers!

Like in the previous malware development trick example, this post is just for showing Proof of Concept.

In the practice example with Telegram API, the attacker has one weak point: if the victim’s computer does not have a Telegram client or let’s say that messengers are generally prohibited in the victim’s organization, then you must agree that interaction with Telegram servers may raise suspicion (whether through a bot or not).

Some time …

api attacker client computer concept cybersecurity data development hackers hello legit malware malware analysis malware development point practice proof simple stealing telegram telegram api trick victim virustotal weak point