RAVEN STEALER UNMASKED: Telegram-Based Data Exfiltration
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
Raven Stealer is a modern, lightweight information-stealing malware developed in Delphi and C++. It targets Chromium-based browsers to extract sensitive data, including passwords, cookies, and payment details. The malware uses a modular architecture and UPX packing to evade detection. It executes stealthily and exfiltrates data via Telegram bot integration. Distributed through GitHub and promoted on Telegram, Raven Stealer's user-friendly interface and dynamic module support make it attractive in the commodity malware ecosystem. The malware's capabilities include credential theft, browser data harvesting, and real-time exfiltration, posing a significant threat when used maliciously.
OPENCTI LABELS :
infostealer,telegram,credential theft,github,c++,delphi,browser data,octalyn stealer,raven stealer,upx packing
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
RAVEN STEALER UNMASKED: Telegram-Based Data Exfiltration