Experts Warn of High-Risk Threat Hidden in Popular Game ‘Chemia’
Gamers are being urged to exercise extreme caution following reports that a malicious software attack has been embedded in a Steam game, potentially allowing hackers to steal passwords, cryptocurrency, and gain full access to users’ devices.
Cybersecurity sources have identified that the malware was smuggled into the game Chemia, developed by Aether Forge Studios, through an apparent security breach on July 22.
According to a detailed report from BleepingComputer, a threat actor known as EncryptHub, also operating under the alias Larva-208, uploaded a file named CVKRUTNP.exe, which executes a dangerous strain of malware called HijackLoader.
What Does the Malware Do? Once downloaded through Chemia, the malware:
Establishes persistent access to the user’s device, Deploys a second-stage payload known as the Vidar infostealer (v9d9.exe), Receives live instructions via a Telegram-based command-and-control server, Extracts sensitive data such as:
Web browser passwords, Autofill information, Stored cookies, Cryptocurrency wallets
The malware is designed to silently infiltrate and extract key personal and financial information, without raising immediate suspicion from users.
Unlike conventional phishing or email scams, this attack relies on user trust in established platforms like Steam, rather than deceptive emails or suspicious downloads.
Cybersecurity analysts warn that as gaming becomes more embedded in everyday digital life, malicious actors are exploiting platforms previously viewed as safe.
As of today, Chemia remains available for download on Steam. Neither Valve (Steam’s parent company) nor Aether Forge Studios has officially commented on the breach. The current safety of the latest version remains unclear.
Gamers are advised to: Avoid downloading Chemia or any unofficial updates, Run antivirus and anti-malware scans if they have previously installed the game, Change all passwords, especially for email, banking, and cryptocurrency platforms.
