The emergence of virtual asset exchanges has led to the rapid growth of the virtual asset market in a short period of time, but due to their centralized trading support, they have been consistently targeted by hackers. The question is whether a virtual asset exchange is legally liable to its users if a large number of virtual assets stored by the exchange are leaked to the outside world due to hacking and cannot be recovered. In this regard, the first issue is the legal personality of virtual assets, especially whether virtual assets can be considered as things under civil law. However, it is difficult to consider virtual assets to be things because they are not considered to be corporeal things or manageable natural forces. However, considering the exclusive control and manageability through the private key, the transaction status, and the intention of the user, it seems that it has a status similar to that of an things. Therefore, until legislation is enacted, it is appropriate to resolve disputes by inferring the regulations and legal principles regarding things unless they are inconsistent with their personality. Furthermore, a contract in which a user stores his or her virtual assets in a exchange and subsequently returns them can be viewed as a non-typical contract similar to a commingled bailment. Accordingly, it is reasonable to assume that the obligation to return the virtual assets incurred by the exchange to the user is similar in obligation in species. Therefore, the exchange is obligated to return the virtual assets to the user immediately upon the user's request for return. In principle, even if the virtual assets in the custody of the exchange are leaked to the outside due to hacking, the exchange continues to bear the procurement obligation. However, in some cases, the obligation to return may not be impossible, and in this case, the user may file an compensatory damages claim against the exchange based on the value at the time of the failure. On the other hand, if the exchange does not fulfill the obligation to return the virtual asset or the transaction support obligation by suspending the operation of the exchange while still holding the virtual asset or still bearing the procurement obligation, such default of the virtual asset exchange shall constitute a performance delay, and the user shall be liable for compensation for the difference depending on whether the user has requested the return of the virtual asset or the transaction support such as buying and selling, and whether it can be proved.