home

super_mario_bros_3.exe

DotNes

The application super_mario_bros_3.exe, “Super Mario Bros. 3 Setup ” has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.
Publisher:
DotNes

Description:
Super Mario Bros. 3 Setup

MD5:
d22a32b8aaf7efc20ee9a65fdff00d5f

SHA-1:
c406fc7d7c9c516ea0f9738ed524633252633354

SHA-256:
dcc410047b42dbb3671777bbc3644a871eb05394dfec97d0bc90c793d62ba13f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
4/19/2024 7:51:39 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallCore (M)
16.4.24.12

File size:
1.2 MB (1,286,906 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\super_mario_bros_3.exe

File PE Metadata
Compilation timestamp:
6/20/1992 2:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:yfOy1O2JdMLOdqNcE9nrO5HZqHU2cryXXP6zxKB2YrwxhfA7of0bDgq2N:yGt239+RUA2yn4kmlAHbUfN

Entry address:
0x98D8

Entry point:
55, 8B, EC, 83, C4, CC, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, EE, 97, FF, FF, E8, F5, A9, FF, FF, E8, 20, CC, FF, FF, E8, 67, CC, FF, FF, E8, 0A, F3, FF, FF, E8, 71, F4, FF, FF, 33, C0, 55, 68, 82, 9F, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 38, 9F, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, B0, 40, 00, E8, 9B, FE, FF, FF, E8, 26, FA, FF, FF, 8D, 55, F0, 33, C0, E8, E0, D0, FF, FF, 8B, 55, F0, B8, D4, BD, 40, 00, E8, 9F, 98, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, D4, BD, 40, 00, B2, 01, B8...
 
[+]

Entropy:
7.9884

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36 KB (36,864 bytes)

The file super_mario_bros_3.exe has been seen being distributed by the following 11 URLs.

http://cdn.games4windownloads.com/1hSjhf13RWxCIE6kigza89GPbBjDZ1OV3U3ZHGMDpiBhO9r8K8EBGlvDOr9eLhSrTAaaPBWWdC 6QI_CahsDUrEQQqhYC2trwccz7XuFWaDkiH kFXHyMgUL7vnk2o3G88mO UuKgwn4oN7139bTLd7e666kExQPMv7yRrjBTk_zlcGQ6QkcyGugjh1SnRiaY 0Z_l6Sy7QRC8JxWFpl5Ba1Cm2NQ==-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=

http://cdn.games4windownloads.com/XL2XWTIuBbahePn9VKa9JGP_su6rMYdbFNUzgddfo6hGg0pGpQC9hC9HO158167xmZOlQgPrWVdDJvtPVkRZNiBaLayIh4p6GFC_ONgsMn8lR4vInle2 73noVFhbOSjf10NdGkNQTwhbnXP8CwOU8mnFv3klhC3jgL_UjlaeOZpydYcHgc6ZpR3WknoOoYP9UcHkLHVobQd8Qqssdah1CcowS8lTw==-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=

http://cdn.games4windownloads.com/g1CC8VUt_EM1_9 6T4nlZuyOnlBShfyfXz8QSSFkt848lhcOGXxvItuWD8me9pAA 7DHbpigZeV98NH1IeVudytYj4E5ch8CXXpzeHrOJBF5PRlH3mIFQTsCC21NYbzNsrRxFCM1qXvbsYSrrh0sKbWh9BUlo0x99fkQuyevTKHOXKSIbN2_GEGclvDKrfIn49rO0DCq3HIg29EtTFI56syYO98jdw==-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=

http://cdn.games4windownloads.com/zcGwnwxZmMXNQ7RoI uxbkVg83A4YLEpL0iZLNVVj814iTJ1tPu bJm4uj Mj8f MgfyiqeEz4gOd6hbyjaNSyYu8aq8fD0EFbVKA8 I8przz67pPkM7IQ0Ej8bxe_g_2ht1ujqSzePwRXZVnAreKc2SsZIRCh3qgWK5GQMbpG4y0lK_R3dZb0ntZnkSOfCY Flz_XpfU0N3STSkPQxX sdPgPhxZa7ytiwanszi6kbpQBdt_HP_3lGR9qKwbE06tJI D_kzdccm5nIQZLsEyfa9iRc6aGXFfcUKVBhAI6viA1eH0fFzk4Q PecNIKA4lPzTee_S8pxk OmcZWem5SWpgzKtQ3CcCQygneF0hLhH1bpnLsqFGNOyYlQb3_CqWFA4CeWehsMyF0LOhjw_mSWMAo185ftL4bMyac d9i0jjRFcgxolJLG_X4y2in8topH1joty3YRwJnBOKTTq9fvCNZjUvYGTArxoEerAwzksDfbDAtU=-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=-e

http://cdn.games4windownloads.com/FaEWMd5_LsHPgbOYZaQJdtU41aM7ZnkT4QwLQFJO8fN6as_qZqICAOE7Jm9bv0BM5CGqlbfz7ZOHzcpX2x6MzqwWr2Osq5wkTuB1APMqzyeoOXQFnAZklpZcNCPgRbv7bavaqSD1xJBz0bNDHj2cpIR5RBbeP4BW4W x44Nz5simltcslMOu_KReV9UE4d8aPrvZdt0CQ4y5uTTCpCowbpO1V0rgug==-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=

http://cdn.games4windownloads.com/1WYjZK4DMY4xUq_NQtejyD_XdL8EsB4bomlnAHL97FYzFmYQiFaetXTZnlZGaC76ysKQcpgGjh6yyFnM9GdrmIpUAXvIJFQ6aFk5iwX5B_3kdT_DZX_sjmkpAOU74SldYnyxSc2xUe6slNjei8Z1vonuOxE1gubsWBc4qTSPJ8NAzmYYgp7EWLvPS44OYf_qF9KGU5sJGBsVDEgOuv5164AFU25oi5vImlmqfYiElYhs2FevVwPdLrynFSMN6uNEfp5W_WzgzPQIfDU2EZMPljkiu9LZ Nmx MNQiDn5y2D0WvhmfYXluSLwKTc2K_9LOEfTPSUrdrnpXEYsZUEbbXkPV1pluviHJX6xJoveCINxkXYjjyFzn8Crd uPc1hd HMiFTmhpnsZi26QyQQV1TKrB8k9XLY5 4PxqyZ2n7TUpDKQQ7LPZNgJCeQWHg45N_FHR_D1QGty_ujshORkEnmRhTeCntBwqEy0UaLjHS8B9 6Ci8A=-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=-e

http://cdn.games4windownloads.com/3G dmMEvq5fF1F DdBIKlP_dHFiB7O8CgB8y22wA_ZMt1AIxoGQMa7t3q7MUAUGnF_gB7cmKibHQsS jXE ZUbOPYKVIy12DtoxROS9DexplhNozSK66rcyMO7KNMTN2QqVU_N328p2nK2v5MxP66dWOTcWpOtgwGLmsUH8WSpf56KdkibPfU16MH3FoZnBNSUIPL9UDUHN128qzE84p8HiOHGgcw==-GzQAAEQ3F5sGYxiIM4nyy HgkAOHLzpgggFYeYJbbowbMGFNz2PPRmlztUT4njvwOwsTfgI=

http://cdn.games4windownloads.com/WVl6OTRQWFJzUzNCb09ERlRaVzlCTVd0a2Ntd2xNa1pUT0cxblRVaE1kMnR0YkRkbGNuZE5XWFI2T1VwaVQzaHBXU1V6UkNaalBYRjVRWEJJWTJwbk9IQTJRM2xuSlRKQ2VIaG1iREJMVFVjd1p6ZDZWMVp4UkhONGNuVmhjRXBhSlRKQ1lYSlVPVmxKSlRKQ1dYZEpjSFZVVGpoMVVraFlPVlYyYjJkbGNYVk9KVEpHYW14WWNXaHFUV0ZIVEdSVFptbGFXR2haV21kQ1VVcG9UWFJ6YTNocFdtRTFTa2N6ZWxOQlN5VXlRakZRUm5sMU5YaEdXV1p3ZFZGalluTTRjbVJCSlRKR1pGcDBXREkxWmxsaVYxZHlla1ZRTVRGUlp5VXpSQ1V6UkNabFBUQW1aRzkzYm14dllXUkJjejF6ZFhCbGNsOXRZWEpwYjE5aWNtOXpYek11WlhobEptWmhiR3hpWVdOclgzVnliRDFvZEhSd0pUTkJKVEpHSlRKR1oyRnRaV1poWW5KcGNYVmxMbU52YlNVeVJtUnNKVEpHYm1WekpUSkdjM1Z3WlhKZmJXRnlhVzlmWW5KdmMxOHpMbVY0WlE9PQ==

http://www.gamefabrique.com/download/.../super_mario_bros_3.exe

http://gamefabrique.com/dl/.../super_mario_bros_3.exe

http://www.dlcurrentchuckle.com/c?x=dEv fHRC/7sqqdOVdooUgsQCzWp0Z5mnAwykLj2EScY=&c=Jugk Yp 8EvBuPSiHAggfPjrSiagt/JDXo8PzUilkNiePA3WATarPaVZLtdltRObYxoEJ0657PL2tu2hPsXNx/K aCLS4q4mvQsRjpiRBHcSVzj5f52e16tg3t5zdwm &downloadAs=super_mario_bros_3.exe&fallback_url=http://gamefabrique.com/dl/.../super_mario_bros_3.exe

Remove super_mario_bros_3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.