Hide Navigation Hide TOC Telegram API Access (b494b165-6634-483d-8c47-2026a6c52372) Detects suspicious requests to Telegram API without the usual Telegram User-Agent Cluster A Galaxy A Cluster B Galaxy B Level Telegram API Access (b494b165-6634-483d-8c47-2026a6c52372) Sigma-Rules Bidirectional Communication - T1102.002 (be055942-6e63-49d7-9fa1-9cb7d8a8f3f4) Attack Pattern 1 Telegram API Access (b494b165-6634-483d-8c47-2026a6c52372) Sigma-Rules Web Protocols - T1071.001 (df8b2a25-8bdf-4856-953c-a04372b1c161) Attack Pattern 1 Web Service - T1102 (830c9528-df21-472c-8c14-a036bf17d665) Attack Pattern Bidirectional Communication - T1102.002 (be055942-6e63-49d7-9fa1-9cb7d8a8f3f4) Attack Pattern 2 Application Layer Protocol - T1071 (355be19c-ffc9-46d5-8d50-d6a036c675b6) Attack Pattern Web Protocols - T1071.001 (df8b2a25-8bdf-4856-953c-a04372b1c161) Attack Pattern 2