I also have an old game that support does not seem to believe it is suspicous. I am half convinced the ddos attacks are from criminal groups trying to divert attention of staff, so they have less time to do good work on reports for suspicous games. That they do not react to reports on obvious malware for over a week is not really helpful to their users.
This case here might actually be an infected developer's machine. Maybe they used an unlegit version of rpg maker that was infected.
I think they might have closed the remote server that this malware was connecting to. The alternative would be, that the malware detected to be running in a vm and behaved orderly because of that. There are vm scanners and tactics to avoid detection in that vm and detection of such avoidance and back and forth.