‘Grupo de Delitos Telemáticos’ Ransomware

Posted: July 23, 2013

Threat Metric

The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to give every identifiable malware threat. Our Threat Meter includes several criteria based off of specific malware threats to value their severity, reach and volume. The Threat Meter is able to give you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count, Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic breakdown of how all threats are ranked within our own extensive malware database. The scoring for each specific malware threat can be easily compared to other emerging threats to draw a contrast in its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to remove a threat or pursue additional analytical research for all types of computer users.

The following fields listed on the Threat Meter containing a specific value, are explained in detail below:

Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.

Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.

Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.

Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.

% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.

Threat Level:	2/10
Infected PCs:	91

First Seen:	July 23, 2013
OS(es) Affected:	Windows

The 'Grupo de Delitos Telemáticos' Ransomware is a fake Police Trojan that uses inaccurate legal pop-up warnings to extort money from its victims by claiming that they must pay a fine to unlock their PCs. As a minor variant of previous fake Police Trojans already examined by SpywareRemove.com malware researchers, the 'Grupo de Delitos Telemáticos' Ransomware only differs significantly in that the 'Grupo de Delitos Telemáticos' Ransomware focuses on delivering its fake alerts to residents of Spain and claims to be authorized by the GDT – a telecommunications-based criminal investigation organization of the Spanish government. Since the 'Grupo de Delitos Telemáticos' Ransomware launches its attacks arbitrarily and doesn't have any real legal standing, there's no point in paying the 'Grupo de Delitos Telemáticos' Ransomware's ransom, but you may need to take some thorough steps in disabling the 'Grupo de Delitos Telemáticos' Ransomware before you can recover your PC and delete the 'Grupo de Delitos Telemáticos' Ransomware permanently.

Why 'Grupo de Delitos Telemáticos' Ransomware's Telematics Tend to Finger the Wrong Target

Although its pop-up alert is designed to look like a legitimate legal warning from the Spanish government and even will include some details about your PC such as your physical location (as determined by your IP address), the 'Grupo de Delitos Telemáticos' Ransomware isn't a legal program. As a Trojan that's designed to scam people out of their money through illegal Paysafecard and Ukash transactions, the 'Grupo de Delitos Telemáticos' Ransomware is installed on any vulnerable computer regardless of its history – in most cases, through various drive-by-download website attacks or the attacks of additional Trojans. Browser security features and a simple avoidance of all potentially dangerous Web content – including links and file attachments – are the major defenses SpywareRemove.com malware experts would recommend for preventing the 'Grupo de Delitos Telemáticos' Ransomware infections.

The 'Grupo de Delitos Telemáticos' Ransomware usually will be noticed the very next time your PC reboots since the 'Grupo de Delitos Telemáticos' Ransomware is set to display its fake pop-up warning in Windows automatically. Besides its being designed to fail to close or even minimize itself, the 'Grupo de Delitos Telemáticos' Ransomware's alert will claim that your computer has been locked as a punishment for various crimes related to its usage. This stock warning message has been seen throughout many other Police Ransomware Trojans, and SpywareRemove.com malware analysts emphasize that it isn't indicative of your PC ever having been used for illegal activities.

The Fix for Spain's Ransomware Blues: a Universally-Applicable Cure

The 'Grupo de Delitos Telemáticos' Ransomware may appear to be designed as a program explicitly for Spanish residents, but actually doesn't have many structural differences from the other fake Police Trojans from its family – especially recent members, which include identical pop-up warnings that simply have had their national trappings adjusted to whatever country they're designed to target. Some examples of other fake Police Trojans that implement attacks 'Grupo de Delitos Telemáticos' Ransomware's own include the 'BundesKriminalamt 'Ihrem Persönlichen Computer Wurde Gesperrt' Virus of Germany, the 'Ministry of Public Safety Canada' Ransomware, the 'Polizja Biuro Służby Kryminalnej' Ransomware of Poland, the 'FBI Department of Defense' Ransomware of the United States, the Rikspolisstyrelsen Ransomware of Norway and the 'Mandiant U.S.A Cyber Security' Ransomware.

While the 'Grupo de Delitos Telemáticos' Ransomware claims that you're placed under a strict time limit for paying its fee, SpywareRemove.com malware researchers haven't noted any other attacks from the 'Grupo de Delitos Telemáticos' Ransomware other than its initial warning message and included program-blocking behavior, which can prevent you from opening basic security tools like Task Manager. Booting your PC from a removable device (USB drive usually are preferred), booting it into Safe Mode or booting to the Command Prompt all can help you prevent the 'Grupo de Delitos Telemáticos' Ransomware from launching and locking your computer. With this accomplished, you should remove the 'Grupo de Delitos Telemáticos' Ransomware right away with whatever anti-malware scanner you prefer, without any need to pay its fine.

Technical Details

Additional Information

The following URL's were detected:

negativescarcelyrooms.com