Palevo spreads through 3 ways: USB drives, Messengers and P2P. When it gets access to any pc it adds registry key to run its code on boot.
When plugging any storage device to infected computer, Junaci copies itself into UNUCI folder and creates autorun file running malicious code. After plugging the device into healthy computer, Junaci copies itself into %HOME%/csrss.exe
Junaci was written in Visual C++