{ "Event": { "analysis": "1", "date": "2026-03-12", "extends_uuid": "", "info": "[Threat Intel][PhishHuntMY] How Scammers Stole Telegram Accounts During Ramadhan 2026", "protected": false, "publish_timestamp": "1774219680", "published": true, "threat_level_id": "3", "timestamp": "1774219680", "uuid": "c99cb7b0-3736-4cab-b7b5-3b1b4d769179", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:target-information=\"Malaysia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:country=\"indonesia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:online-service=\"b0c71d51-34fd-47b5-9eb4-dd406ffc607f\"", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#ffd12e", "local": false, "name": "rectifyq:target=\"broad-based\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"Tria.ge\"", "relationship_type": "" }, { "colour": "#3800d9", "local": false, "name": "rectifyq:action-taken=\"VT-comment\"", "relationship_type": "" }, { "colour": "#3d00e9", "local": false, "name": "rectifyq:action-taken=\"telegram\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773743925", "to_ids": false, "type": "link", "uuid": "f0840b03-f39d-4475-b04f-a6c27db676aa", "value": "https://www.notion.so/How-Scammers-Stole-Telegram-Accounts-During-Ramadhan-2026-3211ea45347c80f19a61cbb0f570fc64" }, { "category": "Network activity", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773751278", "to_ids": true, "type": "ip-dst", "uuid": "1723732e-2e6a-486e-b307-c407bd38e09b", "value": "142.251.143.97", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773751300", "to_ids": true, "type": "url", "uuid": "e5b24ef6-87f5-4e41-8ea5-249485ea8c83", "value": "http://bantuantngmalaysia18.blogspot.com/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773751321", "to_ids": true, "type": "hostname", "uuid": "9eac1b1f-6441-459c-8767-d4603f092121", "value": "bantuantngmalaysia18.blogspot.com", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Other", "comment": "Mistake 1 \u2014 They left their contact details in the code", "deleted": false, "disable_correlation": false, "timestamp": "1773744114", "to_ids": false, "type": "text", "uuid": "1c95bca8-6813-4bfd-899c-cdd0c840ade9", "value": "const TOKEN = \"8121226373:AAFEj4oWGfVy8JeNI0IT1atz5E6AhBrjzuE\";\r\nconst CHAT_ID = \"8451906920\";\r\nlet userData = {};" } ] } }