Crypto Malware Discovered in Popular Super Mario Game
Written on
Chapter 1: The Malware Infiltration
Recent reports indicate that crypto malware has once again infiltrated a widely recognized game. Interestingly, this isn't the first incident involving this particular title.
The game in question is Super Mario 3: Mario Forever, a fan-developed project launched in 2004. This title has a troubled history regarding malware, but the current situation is particularly concerning. Users who installed the game from a seemingly legitimate source ended up unknowingly downloading an XMR miner, the SupremeBot mining client, and the open-source Umbral stealer.
The game's substantial file size and intricate design make it an attractive target for malware distribution. Such characteristics allow malicious actors to conceal harmful software within the game's installer. This recent incident highlights the troubling reality that three distinct types of malware were included.
In an effort to gain insight into these issues, I reached out to Mario for an exclusive interview. Let’s dive right in!
During our phone interview with Mario
"First, thank you for taking the time to chat with me, Mario. Can I ask if you prefer being called Super Mario or just Mario?"
"It's-a me, Mario!"
"Alright, Mario it is! I've been curious since childhood. What are your thoughts on the reports of malware being discovered multiple times in a Super Mario game, even if it's just a fan creation?"
"Mamma Mia!"
"Are you or Luigi considering any actions to combat these malicious entities that tarnish your reputation? Perhaps you want to alert your fans?"
"Let's a GO!"
phone drops, followed by the sound of Mario running away
"Thank you again, Mario, for this enlightening conversation. As he said, it’s high time we take a stand against these nefarious actors. Let’s a GO!"
The Malware Breakdown
The first piece of malware is an XMR miner, which operates by utilizing the host’s hardware to mine Monero and redirect the earnings to the malware creator's wallet. While wallets can often be identified and blocked, Monero’s privacy features make tracing transactions exceedingly difficult, if not impossible.
Information on the SupremeBot Mining Client is limited, but it likely functions similarly to the XMR miner, exploiting system resources to mine and funnel cryptocurrency to its owner. This miner might also be engineered to work alongside Monero, as most mining relies on either memory-intensive or core-intensive algorithms. Monero can primarily be mined using CPU resources, though this method isn't the most effective. Consequently, the SupremeBot may freely operate using GPU resources.
While these two miners drain system performance, they generally do not pose a significant risk to personal data. However, the third malware, the Open-source Umbral stealer, presents a far greater threat. Capable of stealing sensitive information such as wallet details and passwords, it can also create virtual machines and capture cookies. This malware can indeed wreak havoc if left unchecked.
Compounding the Issue
Two factors exacerbate this situation. Firstly, the recent Super Mario movie has revitalized interest in the franchise, making it more appealing. Secondly, the long-standing tradition of fan-made games within the Super Mario universe has led to a diminished sense of caution among players.
As always, exercising vigilance when downloading content online is essential.
Have you ever fallen victim to malware? If so, please share your experiences and any remedies you discovered. Additionally, if you have effective strategies to combat this type of malware, feel free to contribute your insights in the comments section.
To support my work, consider following me or reading my other posts. I've also recently partnered with Medium; signing up through my referral link or following me there is a fantastic way to show your support.
See you online!
Chapter 2: Understanding the Malware Threat
In the first video titled "SUPER MARIO MALWARE!?! - Virus Investigations 44," the host delves into the implications of malware found in Super Mario games, analyzing its effects and prevention methods.
The second video, "I Found A CURSED Mario HORROR GAME.. (and it gave me a virus)," explores the dangers associated with fan-made games and the potential malware risks involved.