FBI Department of Defense Ransomware

Posted: July 17, 2013

Threat Metric

The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to give every identifiable malware threat. Our Threat Meter includes several criteria based off of specific malware threats to value their severity, reach and volume. The Threat Meter is able to give you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count, Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic breakdown of how all threats are ranked within our own extensive malware database. The scoring for each specific malware threat can be easily compared to other emerging threats to draw a contrast in its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to remove a threat or pursue additional analytical research for all types of computer users.

The following fields listed on the Threat Meter containing a specific value, are explained in detail below:

Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.

Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.

Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.

Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.

% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.

Ranking:	8,069
Threat Level:	2/10
Infected PCs:	1,021

First Seen:	July 14, 2013
Last Seen:	October 17, 2023
OS(es) Affected:	Windows

FBI Department of Defense Ransomware, also known as FBI Department of Defense Virus, is a malware threat detected as ransomware, which is designed by attackers with the goal to steal money from innocent computer users. FBI Department of Defense Ransomware is distributed with the help of a 'Police' Trojan that blocks a targeted PC and displays a fake legal FBI pop-up image/warning message in an effort to frighten an attacked computer user into thinking he/she has performed illicit online actions. The deceptive pop-up notification of FBI Department of Defense Virus states to come from the FBI to scare victimized computer users into thinking that it is an official alert. The misleading pop-up alert of FBI Department of Defense Virus accuses PC users of committing cybercrime and claims they have breached certain laws. The falsified warning message of FBI Department of Defense Ransomware claims that the PC user has been downloading and distributing copyrighted material to other computer users, sending spam emails or visiting malicious websites. The scary notification of FBI Department of Defense Ransomware gives instructions on how to pay a fine of $300 via GreenDot MoneyPak to unlock the computer and evade imprisonment. Do not pay the fine for supposed cybercrime actions because this won't help you to restore access to the computer. You should eliminate the relevant Trojan with a reputable anti-malware program to uninstall FBI Department of Defense Ransomware.

Technical Details

Additional Information

The following URL's were detected:

tagataman.de

The following messages's were detected:

#	Message
1	Mandiant U.S.A. Cyber Security FBI. Department of Defense U.S.A. Cyber Crime Center Interpol Attention! Your computer has been blocked up for safety reasons listed below. You are accused of viewing/storage and/or dissemination of banned pornography (child pornography/zoophilia/rape etc). You have violated World Declaration on non-proliferation of child pornography. You are accused of committing the crime envisaged by Article 161 of United States of America criminal law. Article 161 of United States Of America criminal law provides for the punishment of deprivation of liberty for terms from 5 to 11 years. Also, you are suspected of violation of “Copyright and Related rights Law” (downloading of pirated music, video, warez) and of use use and/or dissemination of copyrighted content. Thus, you are suspected of violation of Article 148 of United States of America Criminal Law. Article 148 of United States of America criminal law provides for the punishment of deprivation of liberty for terms from 3 to 7 years or 150 to 550 basic amounts fine. It was from your computer, that unauthorized access had been stolen to information of State importance and to data closed for public Internet access. [...] The penalty set must be paid in course of 48 hours as of the breach. On expiration of the term, 48 hours that follow will be used for automatic collection of data on yourself and your misconduct, and criminal case will be opened against you. Amount of fine is 300$. You can settle the fine with MoneyPak or MoneyGram xpress Packet vouchers. As soon as the money arrives to the Treasury account, your computer will be unblocked in course of 24 hours. Then in 7 day term you should remedy the breaches associated with your computer. Otherwise your computer will be blocked up again and criminal case will be opened against yourself (with no option to pay fine).

Message

Mandiant U.S.A. Cyber Security
FBI. Department of Defense
U.S.A. Cyber Crime Center
Interpol
Attention!
Your computer has been blocked up for safety reasons listed below.
You are accused of viewing/storage and/or dissemination of banned pornography (child pornography/zoophilia/rape etc). You have violated World Declaration on non-proliferation of child pornography. You are accused of committing the crime envisaged by Article 161 of United States of America criminal law.
Article 161 of United States Of America criminal law provides for the punishment of deprivation of liberty for terms from 5 to 11 years.
Also, you are suspected of violation of “Copyright and Related rights Law” (downloading of pirated music, video, warez) and of use use and/or dissemination of copyrighted content. Thus, you are suspected of violation of Article 148 of United States of America Criminal Law.
Article 148 of United States of America criminal law provides for the punishment of deprivation of liberty for terms from 3 to 7 years or 150 to 550 basic amounts fine.
It was from your computer, that unauthorized access had been stolen to information of State importance and to data closed for public Internet access.
[...]
The penalty set must be paid in course of 48 hours as of the breach. On expiration of the term, 48 hours that follow will be used for automatic collection of data on yourself and your misconduct, and criminal case will be opened against you.
Amount of fine is 300$. You can settle the fine with MoneyPak or MoneyGram xpress Packet vouchers.
As soon as the money arrives to the Treasury account, your computer will be unblocked in course of 24 hours.
Then in 7 day term you should remedy the breaches associated with your computer. Otherwise your computer will be blocked up again and criminal case will be opened against yourself (with no option to pay fine).

FBI Department of Defense Ransomware

Threat Metric

Technical Details

Additional Information

Leave a Reply