“We recently came across one malware, detected as TROJ_VICEPASS.A, which pretends to be an Adobe Flash update. Once executed, it attempts to connect to the home router to search for connected devices. It then tries to log in to the devices to get information. Should it be successful, it will send the information to a command-and-control (C&C) server and deletes itself from the computer.”
Nice technical analysis, with many details.
▻http://blog.trendmicro.com/trendlabs-security-intelligence/malware-snoops-through-your-home-network