Troj/Chymin-A is a keylogging Trojan for the Windows platform.
Troj/Chymin-A may be downloaded by exploited Windows Shortcut (.lnk) files. For more information on this vulnerability please see
http://www.sophos.com/shortcut.
Troj/Chymin-A creates the following folder with a trailing '.' character which prevents it from being browsed in Explorer:
<System>\<Random digits>.
The keylogging component is dropped in this folder with the filename ".dll" (empty filename, DLL extension).