SGAE Virus
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 20 % (Normal) |
| Infected Computers: | 401 |
| First Seen: | July 31, 2012 |
| Last Seen: | September 14, 2022 |
| OS(es) Affected: | Windows |
SGAE Virus is the Spanish variant of the LockScreen family of ransomware Trojans, a large family of Winlockers targeting computers in Europe. Like most ransomware infections, the SGAE Virus will block access to the infected computer and, through an intrusive message, will threaten the victim to pay a ransom to avoid prosecution. ESG security analysts note that the SGAE Virus is not related to the SGAE, a legitimate Spanish association. Rather, SGAE Virus is part of a well known online scam. The SGAE Virus should be treated like any malware infection and removed immediately with a strong, fully-updated anti-malware product.
Table of Contents
How the SGAE Virus Scam Works
Once the SGAE Virus infects a computer, SGAE Virus will make changes to the Windows Registry and system settings that allow SGAE Virus to display an intrusive full screen message when the victim logs into Windows. This message prevents access to Windows components such as the Windows Task Bar and Task Manager. It also prevents access to the infected computer's files. The message will claim that the victim's computer contains illegally-downloaded music and other media files. It threatens prosecution, including jail time, unless the victim pays a one hundred Euro fine. It is important to remember that the SGAE Virus has absolutely no affiliation with the real SGAE, a legitimate Spanish institution.
Dealing with the Many Variants of the SGAE Virus
Some of examples of other versions of malware in the Lockscreen family of Trojans include the SIAE Virus and the Ukash Virus. While the SGAE Virus targets victims in Spain, these two examples attack computers in Italy and Great Britain. Fortunately, malware in the Lockscreen family of Trojans can be removed with most anti-malware programs that are up to date. However, to do this it is necessary to bypass the SGAE Virus' full screen threatening message; otherwise, you will not be able to access your security software. To do this, ESG malware analysts advise using an alternative boot method to start up Windows, such as using Safe Mode or an external memory device. This will prevent the SGAE Virus from loading automatically when you start up Windows and give you access to your security software.
URLs
SGAE Virus may call the following URLs:
| riskfreesuperioreffective.cyou |
Messages
The following messages associated with SGAE Virus were found:
| Le descarga de canciones con copyright mediante internet o redes para compartir música es ilegal, y de acuerdo con la Sección 106 de la Ley de derechos de copia, sujeta a una multa o pena de prisión de hasta 3 años. |
| Your downloads of copyrighted songs via the Internet or music-sharing networks is illegal, and in accordance with Section 106 of the copyright law, you are subject to a fine or imprisonment up to 3 years. |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.