Home Malware Programs Ransomware KODA Police Ransomware

KODA Police Ransomware

Posted: February 28, 2013

Threat Metric

Threat Level: 2/10
Infected PCs: 36
First Seen: February 28, 2013
OS(es) Affected: Windows

A spinoff of the same scam as the Koda Virus, KODA Police Ransomware is a new Police Trojan that claims to be authorized to block your computer as a penalty for your file-downloading activities. While you may or may not be guilty of such common misdeeds, KODA Police Ransomware displays its fake alert even if you're blameless, and any money given to KODA Police Ransomware to unlock your PC actually makes its way into criminal hands. To disable KODA Police Ransomware's misleading warning message and unlock your PC, SpywareRemove.com malware researchers advise you to use anti-malware products to disinfect your PC after you've booted into Safe Mode, the latter of which will deactivate KODA Police Ransomware's startup exploit.

KODA Police Ransomware: Why Denmark Likely is Just the First of Its Victims

KODA Police Ransomware currently attacks members of Denmark with a Danish-language pop-up alert that references both KODA (a non-profit 'rights management' organization for music artists) and Denmark's 'politi' or police force. This pop-up warning claims that you've violated the law by downloading copyright-protected music and will be unable to use your computer until you pay a fine. True to its word, KODA Police Ransomware prevents you from using any other programs while KODA Police Ransomware is open – and KODA Police Ransomware will launch automatically whenever Windows starts.

However, SpywareRemove.com malware researchers have identified KODA Police Ransomware as nothing more than another PC-based hoax. KODA Police Ransomware isn't affiliated with either of the two organizations noted above and will not unlock your PC even if you do make the mistake of paying KODA Police Ransomware's Paysafecard fine.

KODA Police Ransomware also captures and displays your webcam feed, making it appears as if the police are literally watching you from moment to moment. KODA Police Ransomware also may include other malicious functions, and SpywareRemove.com malware experts recommend that you expel KODA Police Ransomware as soon as possible.

Why Denmark Likely is Just the First of KODA Police Ransomware's Victims

Most ransomware like KODA Police Ransomware will specialize in attacking specific countries, but often develop variants that attack many different nationalities. Previous attacks by PC threats reminiscent of KODA Police Ransomware have particularly focused on Europe, but even South America, Canada and Australia also have been attacked similarly. SpywareRemove.com malware experts usually note the involvement of exploit-hosting websites in these attacks, and maintaining high security for your browser should be a priority for preventing KODA Police Ransomware-related attacks.

KODA Police Ransomware also appears to have a very direct relative in the form of Luxorr Police Ransomware, which targets the nearby country of Luxembourg with a nearly-identical ransom (but without any reference to KODA, which is specific to Denmark). Copyright-protecting organizations other than KODA also have been used in similar attacks, with examples including the Gema 'Access to your computer was denied' Virus, the SABAM Virus, the Celas Trojan and members of the Lockscreen family (such as the SGAE Virus).

To remove KODA Police Ransomware, you should try to disable KODA Police Ransomware with Safe Mode, loading an emergency OS or any other means required. Anti-malware scanners can then be used to delete KODA Police Ransomware and any other malware that could be installed with KODA Police Ransomware.

Technical Details

Additional Information

The following messages's were detected:
# Message
1KODA – POLITI
Din computer er blevet last.
Ulovligt hentet musikstykker (piratkopieret) er blevet placeret pa din computer.
Ved at downloade, blev disse musikstykker reproduceres, hvilket indebærer en strafbar handling i henhold til 106 i lov om ophavsret.
Download af ophavsretligt beskyttede sange via internettet eller musik-sharing-netværk er ulovligt og er i overensstemmelse med $ 106 i ophavsretsloven med bøde eller fængsel i en straf pa op til 3 ar.
Desuden besiddelse af ulovligt downloadet musik stykker er strafbart i henhold til 184, stk 3 i straffeloven og kan ogsa føre til konfiskation af computeren, som filerne blev downloadet.
Du kan tydeligt identificeres ved at løse din IP-adresse og den tilhørende værtsnavn.
Det piratkopieret materiale er blevet krypteret og blev flyttet til en beskyttet mappe for at forhindre yderligere skader.
For at lase din computer og for at undga andre juridiske konsekvenser, er du forpligtet til at betale en frigivelse gebyr pa 100 . Betales via vores betalingspartner Paysafecard. Efter en vellykket betaling, vil computeren automatisk lase op.
Manglende overholdelse af denne forespørgsel kunne involverer kriminelle anklager og eventuel fængselsstraf.
For at udføre betalingen, skal du indtaste den erhvervede Paysafecard kode i den udpegede betaling boksen og tryk pa knappen "Send".
Den KODA legitimeres ved lov – og er i tæt kontakt med lovgiverne og Politi.

Loading...