{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreigcbz5qc54f3mloewnflkygtpfc2y6rionnt3bjsvfhpb2kpcclem",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3miiekx3vv552"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreic55fljrx3zk45ad7jrrysgam3x4g2lnq6lqksckn6dixlxaml7zu"
    },
    "mimeType": "image/webp",
    "size": 19316
  },
  "path": "/hackers-use-telegram-based-resokerrat-to-spy-on-windows-pcs-and-keep-access-after-reboot/",
  "publishedAt": "2026-04-01T09:59:45.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Hackers use Telegram-based ResokerRAT to spy on Windows PCs and keep access after reboot",
    "VPN Central"
  ],
  "textContent": "A newly analyzed Windows remote access trojan called ResokerRAT uses Telegram’s Bot API as its control channel instead of a traditional command-and-control server. That gives attackers a familiar cloud service to hide behind while they send commands and receive stolen data from infected systems. The malware runs as Resoker.exe and focuses on Windows systems. Researchers […]\n\nThe post Hackers use Telegram-based ResokerRAT to spy on Windows PCs and keep access after reboot appeared first on VPN Central.",
  "title": "Hackers use Telegram-based ResokerRAT to spy on Windows PCs and keep access after reboot"
}