QUICKMUTE

QUICKMUTE is a Windows malware family operated by Tonto Team.

Background

QuickMute is malware written in C/C++. It is capable of fetching a payload, decrypting it with RC4, and running it in memory, expecting a PE file that exports the function "HttpsVictimMain". For command-and-control traffic it supports several protocols, namely TCP, UDP, HTTP, and HTTPS.

Source: Malpedia (Fraunhofer FKIE).