This includes a dropper that will download and install a cryptominer on your system. The dropper is hiding inside the libEGL.dll file: https://www.virustotal.com/gui/file/8bacb2082eb37fd7aed5bb6a7fc766d9937d9f3ed926ae82420d37af754a216c/details Notice that despite only being detected by one antivirus right now (which usually indicates that it is just a false-positive) the first time this particular file was submitted to virustotal was 2025-12-14. Now compare it to the actual libEGL file that comes with the demo of this same game https://www.virustotal.com/gui/file/3237951e48aa59bb3ecca077f4d075cc7b414ad69e09d8e006eb36e1b38d86ab/details (a much smaller size date of submission).
This also appears to detect VMs and sandboxes and probably won't download or execute its payload but if you have run on your regular machine you were infected with a cryptominer, this cryptominer hides itself from taskmanager and similar process monitors like process explorer but when it's running it uses 20-30% cpu and around 2.5GB of ram. You might attempt to just remove that but considering this includes a cryptominer there is no reason to believe that it doesn't include other malware such as infostealer something else that is just harder to detect. You should reinstall your OS and change your passwords.
All other versions of this game I've found so far were also contaminated.
Comments - 3
Etar
orensan
mmbzsjdb