» chimera.exe
Overview
Analysis
File Details
Downloads (1)

chimera.exe

Chimera tool

Euro-Server s.r.o.

This is a setup program which is used to install the application. The file has been seen being downloaded from chimeratool.com.

File name:

chimera.exe

Publisher:

Euroserver Sro. (signed by Euro-Server s.r.o.)

Product:

Chimera tool

Description:

Chimera mobile tool

Version:

8, 39, 1343, 0

MD5:

64ba81b7d26b8e494a58f4be58689ab6

SHA-1:

e2778fd14ff3afbc8d1270a74cf7807f87d10e48

SHA-256:

04bc70f4f14033ed284ff9b7bb04118113b85d36321d72a45df152b85313028c

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

11/24/2024 10:00:33 PM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/QVM19.1.Malware.Gen

1.0.0.1077

Rising Antivirus

PE:Malware.RDM.21!5.1B[F1]

23.00.65.151116

File size:

41.9 MB (43,889,496 bytes)

Original file name:

chimera.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\chimera\chimera.exe

Digital Signature

Signed by:

Euro-Server s.r.o.

Authority:

GoDaddy.com, Inc.

Valid from:

9/28/2015 12:25:42 PM

Valid to:

9/28/2018 12:25:42 PM

Subject:

CN=Euro-Server s.r.o., O=Euro-Server s.r.o., L=Dunajska Streda, C=SK

Issuer:

CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

00FB1BE9BEEBF9CEC3

File PE Metadata

Compilation timestamp:

11/18/2015 6:49:32 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

12.0

CTPH (ssdeep):

786432:Wh5laIuV3VrxrdQbnWI2IH552pwQqDFkZFBwGOIhBlPwp9bZS0hb9CiMiXMF:JIYphmbnZZ8qDFwAIhBlPstkiM2MF

Entry address:

0x2920000

Entry point:

EB, 08, 0F, FA, EE, 00, 00, 00, 00, 00, E9, 00, 20, 00, 00, 54, 41, 47, 47, 00, 20, 00, 00, 0E, 1B, 00, 00, 01, 00, 30, 82, 1B, 0A, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 02, A0, 82, 1A, FB, 30, 82, 1A, F7, 02, 01, 01, 31, 09, 30, 07, 06, 05, 2B, 0E, 03, 02, 1A, 30, 82, 0F, 20, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 01, A0, 82, 0F, 11, 04, 82, 0F, 0D, D0, 00, 01, 00, 01, C1, B1, A1, 02, 00, 03, 00, 09, 00, 00, 00, 26, 00, 00, 00, 01, 00, 1D, AA, A2, 40, 86, C7, AE, F4, 65, 40, BD, 74, AB, F1, E5, 5C, F1... 
[+]

Entropy:

7.9971 (probably packed)

Code size:

14.1 MB (14,803,456 bytes)

The file chimera.exe has been seen being distributed by the following URL.

https://chimeratool.com/.../latest

Scan chimera.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.