SGAE Virus Description

SGAE Virus is the Spanish variant of the LockScreen family of ransomware Trojans, a large family of Winlockers targeting computers in Europe. Like most ransomware infections, the SGAE Virus will block access to the infected computer and, through an intrusive message, will threaten the victim to pay a ransom to avoid prosecution. ESG security analysts note that the SGAE Virus is not related to the SGAE, a legitimate Spanish association. Rather, SGAE Virus is part of a well known online scam. The SGAE Virus should be treated like any malware infection and removed immediately with a strong, fully-updated anti-malware product.

How the SGAE Virus Scam Works

Once the SGAE Virus infects a computer, SGAE Virus will make changes to the Windows Registry and system settings that allow SGAE Virus to display an intrusive full screen message when the victim logs into Windows. This message prevents access to Windows components such as the Windows Task Bar and Task Manager. It also prevents access to the infected computer’s files. The message will claim that the victim’s computer contains illegally-downloaded music and other media files. It threatens prosecution, including jail time, unless the victim pays a one hundred Euro fine. It is important to remember that the SGAE Virus has absolutely no affiliation with the real SGAE, a legitimate Spanish institution.

Dealing with the Many Variants of the SGAE Virus

Some of examples of other versions of malware in the Lockscreen family of Trojans include the SIAE Virus and the Ukash Virus. While the SGAE Virus targets victims in Spain, these two examples attack computers in Italy and Great Britain. Fortunately, malware in the Lockscreen family of Trojans can be removed with most anti-malware programs that are up to date. However, to do this it is necessary to bypass the SGAE Virus’ full screen threatening message; otherwise, you will not be able to access your security software. To do this, ESG malware analysts advise using an alternative boot method to start up Windows, such as using Safe Mode or an external memory device. This will prevent the SGAE Virus from loading automatically when you start up Windows and give you access to your security software.

Type: Viruses

How Can You Detect SGAE Virus?

SGAE Virus Technical Report

As new SGAE Virus details are reported by our customers and findings from our Threat Research Center, we will update this section.

Fake message for SGAE Virus:

The following fake error message(s) appears for SGAE Virus:

Le descarga de canciones con copyright mediante internet o redes para compartir música es ilegal, y de acuerdo con la Sección 106 de la Ley de derechos de copia, sujeta a una multa o pena de prisión de hasta 3 años.

Your downloads of copyrighted songs via the Internet or music-sharing networks is illegal, and in accordance with Section 106 of the copyright law, you are subject to a fine or imprisonment up to 3 years.

Important Article Disclaimer