home

monitor.exe

Chameleon Monitor

Evgeni Shmakov

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
NeoSoft Tools  (signed by Evgeni Shmakov)

Product:
Chameleon Monitor

Version:
3.0.0.1087

MD5:
02b2f92d150d908e51eebf2511b675ae

SHA-1:
e18e52d00fbe7ffb3834235fe05e9de8563fe650

SHA-256:
45d1fb367df190e04f8692e6e59fb3106d5f5ff677d76c00c13f8f2c1ea332f3

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 2:42:00 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V0823
7.2.137

ViRobot
Trojan.Win32.A.Zbot.4248008
2011.4.7.4223

File size:
5.2 MB (5,432,256 bytes)

Product version:
3.0.0.1087

Copyright:
Copyright (c) 2002-2012 NeoSoft Tools

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\common files\chameleon manager\monitor.exe

Digital Signature
Signed by:
Evgeni Shmakov

Authority:
StartCom Ltd.

Valid from:
3/23/2012 6:04:04 AM

Valid to:
3/23/2014 11:58:21 PM

Subject:
E=evgeni@neosoft-tools.com, CN=Evgeni Shmakov, L=Yekaterinburg, S=Sverdlovsk Oblast, C=RU, Description=69m13gixZc30Ix8f

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
059A

File PE Metadata
Compilation timestamp:
11/20/2012 7:55:44 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:+0lDo7NqV18NW1R7MYhG5W7Az/LBe9b3KseuDqlH+lr6DoYbLp:+0lDo7NqV18NW1R7MYhGh2rDYR

Entry address:
0x3C7028

Entry point:
55, 8B, EC, B9, 27, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, 57, B8, 94, 5A, 7B, 00, E8, 57, 3B, C4, FF, 33, C0, 55, 68, 7D, 84, 7C, 00, 64, FF, 30, 64, 89, 20, A1, E0, 8F, 7F, 00, C6, 00, 00, 8D, 55, B8, B8, 01, 00, 00, 00, E8, D4, D3, C3, FF, 8B, 45, B8, BA, 98, 84, 7C, 00, E8, 57, 08, C4, FF, 75, 0F, 68, E8, 03, 00, 00, E8, 5B, 4A, C4, FF, E9, C1, 13, 00, 00, 8D, 55, B4, B8, 01, 00, 00, 00, E8, A9, D3, C3, FF, 8B, 45, B4, BA, B4, 84, 7C, 00, E8, 2C, 08, C4, FF, 0F, 85, 8F, 00, 00, 00, 68, D8...
 
[+]

Entropy:
6.6045

Developed / compiled with:
Microsoft Visual C++

Code size:
3.8 MB (3,963,392 bytes)

Scheduled Task
Task name:
Chameleon Monitor-derek


Scan monitor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.