Can anyone tell me what does this malware virus do.
A Reddit user reported suspicious behavior from an executable related to a GitHub project named PRAGMATA-fpsBoost, which purportedly boosts game performance. The executable reportedly created another executable named securestore.exe in the public videos folder, modified Windows Defender exceptions, and altered registry keys. The user is concerned about potential malware activity and data compromise. No confirmed exploits or detailed technical analysis are available. The GitHub repository describes a performance optimization tool for the game PRAGMATA, claiming no malware or miners, but the reported behavior raises suspicion.
AI Analysis
Technical Summary
The reported threat involves an executable linked to a GitHub project called PRAGMATA-fpsBoost, which claims to optimize game performance. However, a user observed that the executable created another executable named securestore.exe in a public folder, modified Windows Defender exceptions, and changed registry keys, actions commonly associated with malware. There is no authoritative vendor advisory or detailed technical analysis confirming malicious intent or specific capabilities. The repository claims transparency and no malware, but the behavior described suggests potential security risks. No known exploits in the wild have been reported.
Potential Impact
If the reported behavior is accurate, the executable's creation of additional executables, modification of Windows Defender exceptions, and registry changes could allow persistence, evade detection, and potentially compromise system security or user data. However, no confirmed data compromise or exploitation has been documented. The impact remains uncertain due to lack of detailed analysis or confirmation.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory or official sources for current remediation guidance. Users should exercise caution before running executables from untrusted sources, especially those that modify security settings or create additional executables. It is recommended to scan the files with updated antivirus tools and monitor for suspicious behavior. If suspicious activity is detected, consider removing the software and restoring system settings. No official fix or vendor advisory is available at this time.
Can anyone tell me what does this malware virus do.
Description
A Reddit user reported suspicious behavior from an executable related to a GitHub project named PRAGMATA-fpsBoost, which purportedly boosts game performance. The executable reportedly created another executable named securestore.exe in the public videos folder, modified Windows Defender exceptions, and altered registry keys. The user is concerned about potential malware activity and data compromise. No confirmed exploits or detailed technical analysis are available. The GitHub repository describes a performance optimization tool for the game PRAGMATA, claiming no malware or miners, but the reported behavior raises suspicion.
Reddit Discussion
The exe created another exe file in public videos folder named securestore.exe and added exceptions in my windows defender and also modified reg keys.
Here is the link https://github.com/ben459275-cyber/PRAGMATA-fpsBoost
Is my PC affected and what info could've been compromised.
I can also send the securestore exe file i have renamed it to .bin (replaced the exe with bin).
Links cited in this discussion
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The reported threat involves an executable linked to a GitHub project called PRAGMATA-fpsBoost, which claims to optimize game performance. However, a user observed that the executable created another executable named securestore.exe in a public folder, modified Windows Defender exceptions, and changed registry keys, actions commonly associated with malware. There is no authoritative vendor advisory or detailed technical analysis confirming malicious intent or specific capabilities. The repository claims transparency and no malware, but the behavior described suggests potential security risks. No known exploits in the wild have been reported.
Potential Impact
If the reported behavior is accurate, the executable's creation of additional executables, modification of Windows Defender exceptions, and registry changes could allow persistence, evade detection, and potentially compromise system security or user data. However, no confirmed data compromise or exploitation has been documented. The impact remains uncertain due to lack of detailed analysis or confirmation.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory or official sources for current remediation guidance. Users should exercise caution before running executables from untrusted sources, especially those that modify security settings or create additional executables. It is recommended to scan the files with updated antivirus tools and monitor for suspicious behavior. If suspicious activity is detected, consider removing the software and restoring system settings. No official fix or vendor advisory is available at this time.
Technical Details
- Source Type
- Subreddit
- cybersecurity
- Reddit Score
- 0
- Discussion Level
- minimal
- Content Source
- reddit_link_post
- Post Type
- link
- Domain
- null
- Newsworthiness Assessment
- {"score":30,"reasons":["external_link","newsworthy_keywords:malware","established_author","very_recent"],"isNewsworthy":true,"foundNewsworthy":["malware"],"foundNonNewsworthy":[]}
- Has External Source
- true
- Trusted Domain
- false
Threat ID: 6a4be08927e9c79719e03d41
Added to database: 07/06/2026, 17:06:17 UTC
Last enriched: 07/06/2026, 17:06:28 UTC
Last updated: 07/06/2026, 19:21:12 UTC
Views: 9
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.