Yesterday, SlowMist’s Web3 security firm warned about the Apocalypse Metaverse game on the X platform.

The Trojan in Disguise

“The Apocalypse Metaverse game is a Trojan! It’s the same old scam with a new face,” the SlowMist team claims, adding, “Do not be tricked — no matter how slick the design is, feeling tempted could mean your wallet takes a hit.”

VirusTotal Apocalypse Metaverse ScanVirusTotal Apocalypse Metaverse Scan
Source: SlowMist, VirusTotal

The Results of the Security Scan

SlowMist shared the results of the security scan with the X community, which was provided by the cybersecurity platform VirusTotal. This tool allows users to analyze URLs, as well as IPs, and upload suspicious files for assessment.

According to the VirusTotal report, “Fourteen security vendors flagged the Apocalypse Metaverse game file as malicious.” Common threat labels used by cybersecurity tools like DrWeb, eScan, Kaspersky, AVG, Arcabit, Avast, BitDefender, ALYac, GData, Emisoft, and others, identified the threat as “trojan.stealer/amos.”

Understanding the Threat

SecureMac, a service specializing in the privacy and security of Mac devices, explains that “AMOS is a trojan capable of stealing various pieces of information from a macOS system, including iCloud keychain passwords, system information, browser cookies, and more.”

The Suspect ENS Addresses

Note that SlowMist’s security experts likely conducted an analysis of the game’s file. If you attempt to assess the game’s website using the same tool, the website is likely to be labeled as “clean” by many scanners employed by VirusTotal.

SlowMist also mentions that the team received a tutorial on the installation of the infected file and was persuaded by the Apocalypse Metaverse developers that “the ‘game’ works.” However, the mere presence of two ENS addresses, which are human-readable domain names associated with ethereum wallet addresses, raises suspicion according to SlowMist.

See also  Farming Blast Points: A Step-by-Step Guide to the Blast Airdrop

The State of the Game and Phishing Attempts

In its posts about the trojan, SlowMist references the X account known as “Apocalypse Cool,” supposedly the team behind the game. This account was created in January 2014 and had almost 11,000 followers at the time of publication.

It is unclear at what official stage of development the game was during the time of this publication, as there have been no updates since September 14. However, on June 7, the team posted an announcement regarding the postponement of the release date, stating, “Due to difficulties with installing our servers on Amazon systems, we have to postpone the release by a certain date.”

In the meantime, on November 6, SlowMist posted another warning on X. The blockchain security experts identified numerous phishing sites impersonating their own team.

“Scammers are pretending to be us and tricking users into buying fake tokens,” SlowMist explained, emphasizing that the team “has never created a token and has no intention of doing so.”

### News source:

By Team