Multi-License Discount Quote

Change Region

English
Threat Database Trojans Trojan.Mamson.A

Trojan.Mamson.A

By CagedTech in Trojans

Threat Scorecard

Popularity Rank: 22,702
Threat Level: 80 % (High)
Infected Computers: 92
First Seen: August 19, 2021
Last Seen: May 25, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.Mamson.A
Signature status: No Signature

Known Samples

MD5: b70ad57ddd140e9c1304e80ed190f5ae
SHA1: 0ce65c560e7d2ee40879566fc152a2269e40616b
SHA256: 9A5CC70F0EEF47251F45EB0198C9F329FD03F14E23BFCF6BC5EE6B0E5B1F31DC
File Size: 9.27 MB, 9273856 bytes
MD5: 64be0ba564a17c7ebfcb868c1cada98c
SHA1: 1a0c9a4ce92ea42307e4acdcadba5bf42c8278f7
SHA256: 5866D8FEC9CD33D30F8BB72048B01115ACAD0A2ECAFF6643012BE46F71F130D7
File Size: 9.36 MB, 9361408 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have exports table
  • File doesn't have security information
  • File has TLS information
  • File is 64-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
Show More
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Traits

  • HighEntropy
  • imgui
  • No Version Info
  • ntdll
  • WriteProcessMemory
  • x64

Block Information

Total Blocks: 1,848
Potentially Malicious Blocks: 387
Whitelisted Blocks: 1,366
Unknown Blocks: 95

Visual Map

0 0 0 0 0 ? ? 0 ? 0 0 0 0 0 ? ? 0 0 0 0 0 ? 0 0 0 0 0 0 0 x x 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 x 0 0 x 0 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 x 0 0 0 ? 0 x 0 0 x 0 0 0 x x 0 0 1 x 0 0 x 0 x x 0 x 0 0 x x x 0 x x x 0 0 x x 0 x ? 0 x 0 x 0 x x 0 x 0 0 0 0 x x x 0 x 0 x x 0 0 0 x x x 1 0 0 0 x 0 0 x 0 x x 0 0 0 0 x x 0 0 x x x x x x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 ? x 0 0 0 0 0 0 0 0 0 0 0 x x x 0 0 0 x 0 x 0 x 0 0 0 ? 0 ? ? x x 0 x x 0 0 x 0 x 0 0 0 0 0 0 0 1 0 x x 1 x x 0 0 0 0 x x 1 x 0 1 x ? 0 x x 0 x 0 x x x 0 0 x 0 0 0 x x x x 0 x 0 0 x x x 0 x 0 0 0 0 0 x 0 0 0 0 0 x x x 0 0 0 0 0 0 x ? x x x 0 0 x 0 0 0 0 x x 0 x 0 0 0 0 0 x x 0 0 0 x x x 0 0 0 0 0 0 0 0 x x x x 0 0 0 0 0 0 x x x x x x 0 x 0 x x x ? x 0 0 x 0 0 x x 0 x 1 0 x x 0 0 x x 0 0 0 0 x 1 0 x x 1 ? x 0 x x 0 0 x 0 0 x x 0 0 0 0 0 1 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 x 0 0 0 x 0 x 0 0 x 0 0 x 0 x x 0 0 x 0 0 x 0 0 0 x x x x x 0 0 x 0 0 0 x x x x x 1 0 x 0 x 0 0 0 0 0 1 x 0 x x x 0 x 0 x x x 0 0 0 0 0 0 1 x 0 0 x x x 0 0 0 0 0 0 x x 0 x x 0 0 0 x 0 x 0 x x x 0 x 0 x x ? ? ? x 0 0 0 0 0 x 0 x 0 x ? x x x x x x 0 0 x 0 0 0 x 0 0 x 0 x x x 0 x 0 x 0 0 0 x 0 x x 0 0 x 0 0 x 0 0 0 x 0 0 ? 0 0 0 0 0 0 0 0 0 x 0 x 0 x x 0 x 0 x ? 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 x 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 1 0 0 1 x x 0 0 x x 0 0 x 0 0 1 0 0 1 0 0 1 0 0 1 x 0 0 1 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x 0 0 x 0 x 0 0 0 0 0 x x 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x 0 0 x 0 0 0 0 x x 1 0 0 0 0 0 0 x x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x ? 0 0 0 0 0 0 0 0 0 1 x 0 x 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 x ? x x x 0 0 x 0 ? x 0 x 0 x x x 0 0 x x 0 0 0 x 0 0 0 0 x 0 0 x 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 x x x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 1 0 x x x 0 0 x x x x 0 x x x x x 0 x x 0 0 0 x 0 0 0 x 0 0 0 0 x x 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 x 0 0 0 0 x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 x 0 x x 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 x 0 x 0 x 0 0 0 0 0 0 1 0 0 0 x 0 ? ? 0 0 0 x x x 0 0 0 ? ? x ? 0 ? 0 0 ? ? ? 0 0 x x x 0 0 x 0 x 0 x 0 x 0 0 0 0 0 0 0 0 0 0 ? x ? ? 0 0 0 0 0 x 0 x 0 0 0 0 x 0 0 x x 0 0 0 0 0 0 ? ? 0 ? x x 0 0 x x 1 0 0 0 x 0 0 0 0 0 x 0 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 x x 0 0 x 0 ? ? 0 x x x 0 0 ? 0 0 0 x 1 0 x x 0 x x 0 x 0 0 x x 0 0 x 0 0 ? 0 0 0 0 0 0 0 0 0 x 0 x 0 0 ? x ? 0 ? 0 0 x 0 x x x x 0 0 0 0 0 0 ? ? 0 ? ? ? ? 0 ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? 0 0 0 0 ? ? 0 ? 0 ? ? ? 1 ? 0 ? ? ? ? ? ? ? ? ? 1 ? 0 ? ? ? ? 0 ? ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 ? 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 1 0 1 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Trojan.Agent.Gen.AMQ

Trending

Most Viewed

Loading...