RAVEN STEALER UNMASKED: Telegram-Based Data Exfiltration
Raven Stealer is a modern, lightweight information-stealing malware developed in Delphi and C++. It targets Chromium-based browsers to extract sensitive data, including passwords, cookies, and payment details. The malware uses a modular architecture and UPX packing to evade detection. It executes stealthily and exfiltrates data via Telegram bot integration. Distributed through GitHub and promoted on Telegram, Raven Stealer's user-friendly interface and dynamic module support make it attractive in the commodity malware ecosystem. The malware's capabilities include credential theft, browser data harvesting, and real-time exfiltration, posing a significant threat when used maliciously.
Pulse ID: 6884f157954b5e95a3f11907
Pulse Link: https://otx.alienvault.com/pulse/6884f157954b5e95a3f11907
Pulse Author: AlienVault
Created: 2025-07-26 15:16:39
Be advised, this data is unverified and should be considered preliminary. Always do further verification.