Bicho_curioso.rar

The file (Portuguese for "curious bug/critter") is a known malicious archive historically used in email phishing campaigns , particularly targeting users in Brazil [2, 3].

The malware creates registry keys (e.g., in HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ) to ensure it restarts whenever the computer boots. Bicho_curioso.rar

The emails often claim to contain "curious" photos, "funny" videos, or urgent documents. The name "Bicho_curioso" (Curious Bug) is a psychological bait designed to bypass the user's caution through intrigue. The file (Portuguese for "curious bug/critter") is a

Delete the .rar file and any extracted contents. Do not move them to the Recycle Bin; use Shift + Delete . particularly targeting users in Brazil [2

Captures keystrokes to steal credentials and private messages.

Takes periodic screenshots of the desktop to capture sensitive information that might not be typed (e.g., virtual keyboards).