Defender detected SMRecorder.exe and a bunch of .reg files

[Modinstaller]

Something weird happened today. I got a detection for a random file in AppData/Roaming/Microsoft.

VirusTotal

VirusTotal

www.virustotal.com

There were also reg keys and even something in sys32

What's even more weird, usually when I pop something into virustotal, it recognizes the hash and has already been scanned. So my file is unique apparently.

I'm not knowledgeable about this so I'm looking for some wisdom.
My questions are:
- What is this? It does seem like a bona fide virus to me, but what kind? Can we know what it does? Seems like wherever the virus originated, it just infected those random files, right?
- How in hell did I get this? I'm usually careful and nothing else was detected recently. Yesterday I pirated something and installed it (I do it all the time), but it's clean (plopped the exe into virustotal and nothing).

 

[icotonev]

Hello..! Welcome to MalwareTips..!

By Staff - [MANDATORY] Preparation Guide Before Requesting Malware Removal Help

Hi and welcome to MalwareTips Malware Removal Forum. If you are reading this, then you are probably seeking help or feel infected. Over 5000 topics have been posted in this forum and most of them have reached a successful conclusion. All instructions are very simple and you need only basic...

malwaretips.com

 

[Wrecker4923]

My questions are:
- What is this? It does seem like a bona fide virus to me, but what kind? Can we know what it does? Seems like wherever the virus originated, it just infected those random files, right?
- How in hell did I get this? I'm usually careful and nothing else was detected recently. Yesterday I pirated something and installed it (I do it all the time), but it's clean (plopped the exe into virustotal and nothing).

For removal / removal confirmation help, see the mod's link above.

By VirusTotal, this might be a malware packed to prevent reverse engineering/finding-out what it is (Themida); see info in:

Themida Trojan

www.pcrisk.com

If you look at the top of the detection, the file was restored from quarantine. You might have had it before; perhaps the new pirated software restored it. For new campaigns / new malware / new attack profiles, the AVs might have all missed them too. There is no guarantee.

Pirating software is pretty high risk. So is downloading cheat sheet, "free" software that isn't supposed to be free, etc. You shouldn't do. If you do, maybe get better protection, and be prepared for the day that machine gets infected.

 

[icotonev]

Hello, Modinstaller..! Do you still need help..? It has been 2 days since my last post.If you have not replied within 24 hours I will assume you have abandoned the Topic and it will be closed.

Thank you..!

 

[icotonev]

Due to lack of activity, this topic is now closed. You requested help but did not respond to follow-up questions or instructions within three days and your topic has been moved here.
If you still need help, open a new topic, and wait for a new helper.