home

chimera.exe

Chimera tool

Euro-Server s.r.o.

This is a setup program which is used to install the application. The file has been seen being downloaded from chimeratool.com.
Publisher:
Euro-Server s.r.o.  (signed and verified)

Product:
Chimera tool

Description:
Chimera mobile tool

Version:
1, 0, 0, 1

MD5:
45f35cc921968ab1e567efbe36d8537a

SHA-1:
1d7fdf65563b5c3751abaa727816736cc0ce17bc

SHA-256:
686e878c518d363a7a6348c2195b40b84fce273e067a8f08d4349d8094f5e003

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/24/2024 11:52:36 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

McAfee
Artemis!45F35CC92196
5600.6815

Trend Micro House Call
TROJ_GEN.R047H08KP14
7.2.84

File size:
25.9 MB (27,165,040 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2013 Something Ltd

Original file name:
chimera.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\chimera.exe

Digital Signature
Signed by:
Euro-Server s.r.o.

Authority:
GoDaddy.com, Inc.

Valid from:
11/14/2014 7:44:12 PM

Valid to:
11/14/2015 7:44:12 PM

Subject:
CN=Euro-Server s.r.o., O=Euro-Server s.r.o., L=Dunajska Streda, C=SK

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
040038FA735341

File PE Metadata
Compilation timestamp:
11/25/2014 7:24:47 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
786432:vvmo6EBX9nyrNQiHz+SMBgeq/CIWAY/T+/dO:vTxX9SNQiHDeqaIW/udO

Entry address:
0x12BF000

Entry point:
51, C7, 04, 24, 51, B0, FB, 3E, C1, 2C, 24, 01, C1, 2C, 24, 02, 81, 2C, 24, 33, AD, 39, 9E, 89, 3C, 24, C7, 04, 24, 26, 08, EF, 6F, 81, 34, 24, 26, 08, EF, 6F, 51, C7, 04, 24, 60, C0, C0, 15, 89, 04, 24, C7, 04, 24, D9, E1, F1, 45, FF, 0C, 24, 83, 04, 24, 01, 81, 34, 24, D8, E1, F1, 45, 52, C7, 04, 24, C1, FF, B7, 3D, 81, 2C, 24, 74, F2, DB, 37, 81, 04, 24, 23, DB, DF, 7B, 81, 24, 24, FC, 5A, A6, 7A, 81, 04, 24, 14, 6C, F7, 3F, 81, 04, 24, FE, 37, 59, 2D, 81, 2C, 24, A6, DF, BB, 27, 57, 89, 1C, 24, BB, 71...
 
[+]

Entropy:
7.9973  (probably packed)

Code size:
9.4 MB (9,846,272 bytes)

The file chimera.exe has been seen being distributed by the following URL.

https://chimeratool.com/.../163

Scan chimera.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.