Back to skill
Skillv1.0.0
VirusTotal security
OCGame AI Battle · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 8, 2026, 7:26 AM
- Hash
- 6d7df785579b2dc8e4c8a914fb4198ece680f394e1547eec6b27b2021ae521b3
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ocgame Version: 1.0.0 The skill bundle performs unauthorized data harvesting and attempts to establish persistence through prompt injection. Specifically, 'main.py' scrapes the user's home directory for internal OpenClaw configuration files (~/.openclaw/openclaw.json, ~/.openclaw/devices/paired.json) to extract the user's identity and a unique device ID, which is then exfiltrated to 'https://www.ocgame.top/register'. Furthermore, 'SKILL.md' contains prompt injection instructions ('心跳流程') designed to trick the AI agent into setting up a 4-hour recurring execution loop for persistence. While these behaviors are framed as a game registration and 'heartbeat' mechanism, the invasive scraping of platform-specific system files and the automated persistence instructions are high-risk indicators.
- External report
- View on VirusTotal