home

chimera.exe

Chimera tool

Euro-Server s.r.o.

This is a setup program which is used to install the application. The file has been seen being downloaded from i16.indiworlds.com and multiple other hosts.
Publisher:
Euroserver Sro.  (signed by Euro-Server s.r.o.)

Product:
Chimera tool

Description:
Chimera mobile tool

Version:
8, 34, 1902, 0

MD5:
33162844d337093fc1a0aacfeb019d00

SHA-1:
02fd8270a6cc6f60a0a7621794e8c63079cb9b75

SHA-256:
62acf9e59539e9134eea044eee1aa6cb5266475d746da32002f493f4f56a7cce

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 4:31:51 PM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM19.1.Malware.Gen
1.0.0.1077

File size:
41.5 MB (43,552,600 bytes)

Copyright:
Copyright (C) 2015 Euroserver Sro.

Original file name:
chimera.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\chimera\chimera.exe

Digital Signature
Signed by:
Euro-Server s.r.o.

Authority:
GoDaddy.com, Inc.

Valid from:
9/28/2015 8:25:42 PM

Valid to:
9/28/2018 8:25:42 PM

Subject:
CN=Euro-Server s.r.o., O=Euro-Server s.r.o., L=Dunajska Streda, C=SK

Issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
00FB1BE9BEEBF9CEC3

File PE Metadata
Compilation timestamp:
11/13/2015 7:08:52 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
786432:wL5fSGpajoTMKs34qG3hO/kvPbkUpJwkUrIlhTgyBpmHPwqHI+nn+7CpA90t5B:wL5+F1oj3hOcY1rI0yfmvS+n+7CpTt5B

Entry address:
0x2829000

Entry point:
EB, 08, 0F, 28, E8, 00, 00, 00, 00, 00, E9, 00, 20, 00, 00, 54, 41, 47, 47, 00, 20, 00, 00, 0E, 1B, 00, 00, 01, 00, 30, 82, 1B, 0A, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 02, A0, 82, 1A, FB, 30, 82, 1A, F7, 02, 01, 01, 31, 09, 30, 07, 06, 05, 2B, 0E, 03, 02, 1A, 30, 82, 0F, 20, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 01, A0, 82, 0F, 11, 04, 82, 0F, 0D, D0, 00, 01, 00, 01, C1, B1, A1, 02, 00, 03, 00, 08, 00, 00, 00, 26, 00, 00, 00, 01, 00, 6F, 10, 2F, 25, F7, 78, 95, 28, 91, A3, 32, 93, 8E, CF, DD, E4, 36...
 
[+]

Code size:
14 MB (14,705,152 bytes)

The file chimera.exe has been seen being distributed by the following 3 URLs.

http://i16.indiworlds.com:182/d/.../Chimera V8.34.1902.exe

https://chimeratool.com/.../latest

http://i16.indiworlds.com:182/d/.../Chimera V8.34.1902.exe

Scan chimera.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.