Hackers planted a Steam game with malware to steal gamers’ passwords

Last week, the valve has removed a game from its online store steam because The product was involved with the malwareThe

After removing the game, which was called piratephi, security researchers have analyzed the malware and found that anyone who planted it has corrected an existing video game in an attempt to install an installed gamers Information stiller Bidar is called.

Maryas Genheimer, a researcher who analyzed malware and was working on the secuinfra Falcon team, told Techcunch that judging by the command and control server related to malware and its configuration, ” Was used to do n mases. ”

“It is probably a valid, a moving game that was not a moving game that changed after the first publication,” said Genhimer.

In other words, piratephi was designed to spread malware.

Genhima and colleagues also found that the pyretephi was made by correcting The template of an existing game Easy survival is known as RPG, which gives itself a bill as a game of games that “all you need for your own single player or multiplayer gives you everything” the game. The game manufacturer costs $ 399 to $ 1,099 for the license.

This explains how hackers were able to send an effective video game with little effort with their malware.

According to Zenhimer, Vidar Infosting Malware is capable of stealing and exhausting a variety of data from the computers that are infected, including: Passwords from Web Browser Autopur Features, Session Cookies that can be used to log in without their password, web browser. History, cryptocurrency wallet details, screenshots and two factor codes of the specified token generator, as well as Other files are the person’s computer.

Has been used to promote a number of hacking, including bidar One attempted to steal Hotel Certificate of Booking.com, including the target of others Ransomware placedAnd another attempt Contaminated advertising In the results of Google Search. During 2024, the Health Sector CyberSSCURITY CONTACT Center (HC3) Report That Bidar, which was first invented in 2018, “It has grown as one of the most successful infostillars.”

Infostillers General types of malware designed to steal information and data from the victim’s computer. Infosteillers are often sold in malware-hesabe-service models, which means that the malware can even buy and use the malware even with little skill. Genheimer said “who was behind the piratopy” very difficult, “it also makes detection, such as Bidar” is widely accepted by many cyber criminal. “

Genhimer said that they had analyzed a number of Malwar samples that were included in Piertophy, it was found on a malware online storage virustotal, which was Obviously uploaded by a gamer in Russia; Another star has been identified via SteimDB, a website that publishes information about the game hosted on the steam. Researchers found another sample that had access to the threat detective database. According to Zenhimer in three malware samples, the same effectiveness is.

Valve did not respond to TechCrunch’s request for comments.

Seworth is interactive, its intended developer PiratephiNo apparent online presence. Until last week, the game was An X accountWhich has been removed now. The account included a link to the game in steam.

The owners of the account do not respond to the request to chat via a direct message before removing it.