home

chimera.exe

Chimera tool

Euro-Server s.r.o.

This is a setup program which is used to install the application. The file has been seen being downloaded from chimeratool.com.
Publisher:
Euroserver Sro.  (signed by Euro-Server s.r.o.)

Product:
Chimera tool

Description:
Chimera mobile tool

Version:
4, 81, 1722, 0

MD5:
cf6887ac314ae1a6ff7aceb3f8282a1c

SHA-1:
dff91d79327d21caf3042f7c8eb98363cd54a892

SHA-256:
e306f08104118bf255ad51a982e742037c33d621f8d7779a2823f799f2d40b83

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/24/2024 8:47:23 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6979

Qihoo 360 Security
HEUR/QVM19.1.Malware.Gen
1.0.0.1015

File size:
42.2 MB (44,284,368 bytes)

Product version:
4, 81, 1722, 0

Copyright:
Copyright (C) 2014 Euroserver Sro.

Original file name:
chimera.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Euro-Server s.r.o.

Authority:
GoDaddy.com, Inc.

Valid from:
11/14/2014 8:44:12 AM

Valid to:
11/14/2015 8:44:12 AM

Subject:
CN=Euro-Server s.r.o., O=Euro-Server s.r.o., L=Dunajska Streda, C=SK

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
040038FA735341

File PE Metadata
Compilation timestamp:
7/23/2015 5:23:03 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
786432:j/k5rRTfP8qIDM8Pmm7ychxuvkb72JiT8vVVPxonXlLPqibyoeOa/R8eLw8G:T2POMaNych807JEPYXlO7BOa/ierG

Entry address:
0x2F87000

Entry point:
EB, 08, 0F, 8A, 2D, 01, 00, 00, 00, 00, E9, 00, 20, 00, 00, 54, 41, 47, 47, 00, 20, 00, 00, 0E, 1B, 00, 00, 01, 00, 30, 82, 1B, 0A, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 02, A0, 82, 1A, FB, 30, 82, 1A, F7, 02, 01, 01, 31, 09, 30, 07, 06, 05, 2B, 0E, 03, 02, 1A, 30, 82, 0F, 20, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 01, A0, 82, 0F, 11, 04, 82, 0F, 0D, D0, 00, 01, 00, 01, C1, B1, A1, 02, 00, 03, 00, 04, 00, 00, 00, 26, 00, 00, 00, 01, 00, 96, 7F, 98, 29, 28, D8, 32, 4A, 02, EA, AF, 4B, 19, 26, C7, FC, 19...
 
[+]

Entropy:
7.9947  (probably packed)

Code size:
11 MB (11,554,816 bytes)

The file chimera.exe has been seen being distributed by the following URL.

https://chimeratool.com/.../198

Scan chimera.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.