Domain Age
1 Year
Tranco Rank
#20,852
Operator
AO TELEGA
Threat History
Issues Found
Telega.info is identified as the backend infrastructure for a malicious application that performs Man-in-the-Middle (MITM) attacks. It reroutes traffic from legitimate Telegram servers to intercept and decrypt user communications.
URLert analyzed recent scan activity for telega.info and found 4 results.
| Status | Target URL | Type | Time |
|---|---|---|---|
| Dangerous | https://api.telega.info/v1/dc-proxy | 1mo ago | |
| Dangerous | https://api.telega.info/ | 1mo ago | |
| Safe | https://api.telega.info/v1/dc-proxy | 2mo ago |
Historical and current IP address mappings for this domain.
| IP Address / Hosting | Status | Subdomains | Last Seen |
|---|---|---|---|
Hosted by: Yandex.Cloud LLC (AS200350) | Active | api.telega.info | 7 days ago |
Received a suspicious link? Paste the full link to investigate.
Learn about common risks for this type of website
Access this classification data programmatically via our API.
{
"domain": "telega.info",
"confidence": "high",
"category": {
"purpose": "potentially_malicious",
"specialization": "Malicious Traffic Interception"
},
"identity": {
"headline": "Malicious infrastructure used for Telegram traffic interception",
"summary": "Telega.info is identified as the backend infrastructure for a malicious application that performs Man-in-the-Middle (MITM) attacks. It reroutes traffic from legitimate Telegram servers to intercept and decrypt user communications.",
"operator": "AO TELEGA",
"parent_entity": null,
"topics": [
"malware",
"mitm attack",
"security threat",
"telegram",
"data interception"
]
},
"functions": {
"is_ugc_platform": false,
"is_file_host": false,
"is_url_shortener": false,
"is_public_idp": false,
"is_crypto_platform": false,
"allows_user_subdomains": false,
"is_form_builder": false,
"is_document_host": false
},
"facts": {
"registered_date": "2025-02-16T15:15:36.106000Z",
"rank": 20852,
"hosting_provider": "Yandex.Cloud LLC"
}
}