The FBI Moneypak virus (a.k.a. FBI virus, FBI Green Dot Moneypak virus, Citadel, Reveton) is ransom-ware Trojan that locks up an infected user computer. This malware is delivered by the Blackhole exploit kit and displays a ransom-ware page while claiming to be a legal action page from the U.S. Federal Bureau of Investigation (FBI). The malware locks up the machine and demands payment of $100 or $200 to unlock it. It also disables task manager and registry editor. The page states that the machine is violating copyright and related laws such as video, music, software and illegally using or distributing copyright content, viewing or distributing prohibited pornographic content and that the machine is infected with malware and demands a payment of $100 or $200 through an untraceable money transfer. This is yet another example of ransom-ware or social engineering tactics to exploit Windows users.
The previous version of this ransom-ware demanded a payment of $100. The new version of this FBI moneypak virus demands a payment of $200.
Screenshot from a system infected by fake FBI moneypak virus:
The fraudulent FBI page shows fake claims such as follows:
Attention! Your PC is blocked due to at least one of the reasons specified below:
You have been violating Copyright and related rights Law (Video, Music,Software) and illegally using or distributing copyrighted content, thus infringing Article I, Section 8, clause 8, also known as the Copyright of the Criminal Code of United States of America.
You have been viewing or distributing prohibited pornographic content (Child Pornography/Zoofilia). Thus violating article 202 of the Criminal Code of United States of America. Article 202 of the criminal provides for deprivation of liberty for two or twelve yours.
Illegal access to computer data has been initiated from your PC,or you have been. Article 210 of the Criminal Code provides for a fine of up to $100,000 and/or a deprivation of liberty for four to nine years.
Fines may only be paid within 72 hours after the infringement. As soon as 72 hours elapse, the possibility to pay the fine expires, and a criminal case is initiated against you automatically within the next 72 hours!
Here is another example:
All activity of this computer has been recorded.
If you use a webcam, videos and pictures were saved for identification.You can be clearly identified by resolving your IP address and the associated hostname.Your computer has been locked! Illegally downloaded materials (MP3