{"id":10415,"date":"2025-07-29T12:30:31","date_gmt":"2025-07-29T05:30:31","guid":{"rendered":"https:\/\/infosec.new88088.net\/?p=10415"},"modified":"2026-02-05T12:30:38","modified_gmt":"2026-02-05T05:30:38","slug":"raven-stealer-moi-de-doa-moi-tu-telegram-va-github-nham-vao-nguoi-dung-windows","status":"publish","type":"post","link":"https:\/\/infosec.new88088.net\/2025\/07\/29\/raven-stealer-moi-de-doa-moi-tu-telegram-va-github-nham-vao-nguoi-dung-windows\/","title":{"rendered":"Raven Stealer: M\u1ed1i \u0111e d\u1ecda m\u1edbi t\u1eeb Telegram v\u00e0 GitHub nh\u1eafm v\u00e0o ng\u01b0\u1eddi d\u00f9ng Windows"},"content":{"rendered":"

Th\u00e1ng 7\/2025, c\u00e1c chuy\u00ean gia an ninh m\u1ea1ng \u0111\u00e3 c\u1ea3nh b\u00e1o v\u1ec1 Raven Stealer – m\u1ed9t lo\u1ea1i ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i (malware) m\u1edbi chuy\u00ean \u0111\u00e1nh c\u1eafp th\u00f4ng tin c\u00e1 nh\u00e2n. Kh\u00e1c v\u1edbi nh\u1eefng chi\u1ebfn d\u1ecbch ph\u1ee9c t\u1ea1p tr\u01b0\u1edbc \u0111\u00e2y, Raven Stealer \u0111\u01a1n gi\u1ea3n nh\u01b0ng nguy hi\u1ec3m, \u0111\u01b0\u1ee3c ph\u00e1t t\u00e1n c\u00f4ng khai tr\u00ean GitHub v\u00e0 \u0111i\u1ec1u khi\u1ec3n qua Telegram. V\u1edbi giao di\u1ec7n d\u1ec5 d\u00f9ng v\u00e0 t\u00ednh n\u0103ng t\u1ef1 \u0111\u1ed9ng cao, ph\u1ea7n m\u1ec1m n\u00e0y \u0111ang l\u00e0m d\u1ea5y l\u00ean lo ng\u1ea1i v\u1ec1 l\u00e0n s\u00f3ng m\u00e3 \u0111\u1ed9c-as-a-service (MaaS) d\u00e0nh cho c\u1ea3 hacker “tay m\u01a1”.<\/b><\/p>\n

\n
\"1753783039653.png\"<\/div>\n<\/div>\n

Raven Stealer \u0111\u01b0\u1ee3c ph\u00e1t tri\u1ec3n b\u1edfi nh\u00f3m hacker ZeroTrace Team, v\u1ed1n n\u1ed5i ti\u1ebfng trong c\u1ed9ng \u0111\u1ed3ng ng\u1ea7m v\u1edbi nhi\u1ec1u c\u00f4ng c\u1ee5 \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u nh\u01b0 Octalyn Stealer. Nh\u00f3m n\u00e0y v\u1eadn h\u00e0nh m\u1ed9t k\u00eanh Telegram ri\u00eang, n\u01a1i cung c\u1ea5p, h\u01b0\u1edbng d\u1eabn v\u00e0 qu\u1ea3ng b\u00e1 m\u00e3 \u0111\u1ed9c c\u00f4ng khai.<\/p>\n

Raven l\u00e0 m\u1ed9t infostealer – ph\u1ea7n m\u1ec1m \u0111\u00e1nh c\u1eafp th\u00f4ng tin. N\u00f3 ch\u1ee7 y\u1ebfu nh\u1eafm v\u00e0o ng\u01b0\u1eddi d\u00f9ng Windows, thu th\u1eadp d\u1eef li\u1ec7u t\u1eeb tr\u00ecnh duy\u1ec7t Chrome, Edge, Brave, v\u00ed ti\u1ec1n \u0111i\u1ec7n t\u1eed, m\u1eadt kh\u1ea9u \u0111\u00e3 l\u01b0u, cookie, th\u00f4ng tin thanh to\u00e1n v\u00e0 c\u1ea3 \u1ea3nh ch\u1ee5p m\u00e0n h\u00ecnh.<\/p>\n

\n
\"1753783096847.png\"<\/div>\n

\u200b<\/p><\/div>\n

\u0110i\u1ec1u \u0111\u1eb7c bi\u1ec7t l\u00e0 Raven kh\u00f4ng c\u1ea7n server \u0111i\u1ec1u khi\u1ec3n ri\u00eang (C2). To\u00e0n b\u1ed9 d\u1eef li\u1ec7u b\u1ecb \u0111\u00e1nh c\u1eafp s\u1ebd \u0111\u01b0\u1ee3c n\u00e9n l\u1ea1i r\u1ed3i g\u1eedi tr\u1ef1c ti\u1ebfp l\u00ean Telegram b\u1eb1ng t\u00e0i kho\u1ea3n bot c\u1ee7a k\u1ebb t\u1ea5n c\u00f4ng.<\/p>\n

Ng\u01b0\u1eddi d\u00f9ng c\u00f3 th\u1ec3 b\u1ecb nhi\u1ec5m khi t\u1ea3i v\u1ec1 c\u00f4ng c\u1ee5 ho\u1eb7c ph\u1ea7n m\u1ec1m mi\u1ec5n ph\u00ed t\u1eeb GitHub ho\u1eb7c c\u00e1c trang chia s\u1ebb kh\u00f4ng ch\u00ednh th\u1ed1ng. C\u00e1c b\u1ea3n build c\u1ee7a Raven c\u00f2n c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c tu\u1ef3 ch\u1ec9nh d\u1ec5 d\u00e0ng qua giao di\u1ec7n \u0111\u1ed3 ho\u1ea1, khi\u1ebfn vi\u1ec7c ph\u00e1t t\u00e1n c\u00e0ng tr\u1edf n\u00ean \u0111\u01a1n gi\u1ea3n.<\/p>\n

Raven ho\u1ea1t \u0111\u1ed9ng nh\u01b0 th\u1ebf n\u00e0o?<\/p>\n