Super Mario Game Is Loaded With Crypto Malware That Can Steal Your Coins.

A recently conducted study by Cyble Research & Intelligence Labs revealed crypto-malware’s presence in a popular PC fan game inspired by Nintendo’s Super Mario franchise. The game in question, Super Mario 3: Mario Forever, has been found to contain a payload of malware that can compromise users’ crypto wallets and surreptitiously install resource-intensive crypto mining software.

Originally launched in 2004 through the Softendo website, Mario Forever offers a vast array of free levels, recreating the nostalgic experience of the classic Super Mario side-scrolling games. With a CNET Downloads listing indicating close to 17 million downloads from that website alone, the game has gained significant popularity among fans.

According to Cyble’s report, the legitimate installer for the fan game is bundled with additional malicious software. One such component is the XMR Miner, which silently operates a Monero (XMR) cryptocurrency miner in the background. This process consumes users’ computing resources while benefiting malicious actors who profit from the generated crypto. Monero, a “privacy coin,” conceals transaction details from the public view.

Cyble analyzes SupremeBot, a crypto-mining client leveraging a trojanized Super Mario game installer to spread Umbral stealer malware.https://t.co/X9NIrfpvMQ#Mario #Crypto #SupremeBot #UmbralStealer #Trojan #Darkweb #ThreatIntel

— Cyble (@AuCyble) June 23, 2023

Additionally, the game installs a file that ultimately leads to the download and installation of Umbral Stealer—a lightweight and efficient information-stealing software. Cyble describes Umbral Stealer as capable of capturing passwords, private information, webcam images, and even crypto wallet details. Ethereum, Zcash, Bytecoin, and, specifically, Atomic Wallet are among the targeted wallets.

Avoiding crypto malware

To protect against such crypto-malware, Cyble recommends conducting regular system performance and CPU checks and updating security policies to prohibit the download and installation of crypto-mining software on end-user systems. Users are advised to refrain from downloading pirated software from torrent sites, enable automatic updates, employ antivirus software, and enhance their ability to identify untrustworthy links and phishing attacks.

Cyble stated, “This coin-miner malware campaign exploits the popularity of the Super Mario Forever game to target gamers and individuals utilizing high-performance computing machines for gaming purposes.” The report further emphasizes that combining mining and stealing activities leads to financial losses, significant system performance decline, and the depletion of valuable system resources.

As the threat of crypto-malware persists, users should remain vigilant and adopt necessary precautions to safeguard their devices and personal information from these increasingly sophisticated attacks.