FastLoader (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

win.fastloader (Back to overview)

FastLoader

FastLoader is a small .NET downloader, which name comes from PDB strings seen in samples. It typically downloads TrickBot. It may create a list of processes and uploads it together with screenshot(s). In more recent versions, it employs simple anti-analysis checks (VM detection) and comes with string obfuscations.

References

2020-01-14 ⋅ Malpedia ⋅ Malpedia
Family Page for FastLoader
FastLoader

There is no Yara-Signature yet.

FastLoader Propose Change

References

FastLoader