General
-
Target
2025-04-26_1683495f41e04ebb942e7f2b2ea7e7cf_amadey_elex_smoke-loader
-
Size
11.8MB
-
Sample
250426-yp2vva1l18
-
MD5
1683495f41e04ebb942e7f2b2ea7e7cf
-
SHA1
cec8dec5522c6c3f10e50983d6229058dc6d3c9c
-
SHA256
c5daccf9955552f0816d43c4631a626acaebd8419a0b6636c5acd51bb56aa1af
-
SHA512
c2d903c2c4b9d8687eed84a6a2b042f41511197d026a32126aea24c79a711ba200259d6128837e83d963d0b3ea3c66bad7b3bacaa5b85a5d3d24cafb08226510
-
SSDEEP
49152:djLuSh3i+FtvkMzT+3HfOGlk2Ph0fhe+D6U633:dLu13/Jk2Ph05e+g3
Behavioral task
behavioral1
Sample
2025-04-26_1683495f41e04ebb942e7f2b2ea7e7cf_amadey_elex_smoke-loader.exe
Resource
win10v2004-20250314-en
Behavioral task
behavioral2
Sample
2025-04-26_1683495f41e04ebb942e7f2b2ea7e7cf_amadey_elex_smoke-loader.exe
Resource
win11-20250410-en
Malware Config
Targets
-
-
Target
2025-04-26_1683495f41e04ebb942e7f2b2ea7e7cf_amadey_elex_smoke-loader
-
Size
11.8MB
-
MD5
1683495f41e04ebb942e7f2b2ea7e7cf
-
SHA1
cec8dec5522c6c3f10e50983d6229058dc6d3c9c
-
SHA256
c5daccf9955552f0816d43c4631a626acaebd8419a0b6636c5acd51bb56aa1af
-
SHA512
c2d903c2c4b9d8687eed84a6a2b042f41511197d026a32126aea24c79a711ba200259d6128837e83d963d0b3ea3c66bad7b3bacaa5b85a5d3d24cafb08226510
-
SSDEEP
49152:djLuSh3i+FtvkMzT+3HfOGlk2Ph0fhe+D6U633:dLu13/Jk2Ph05e+g3
Score10/10-
Panda Stealer payload
-
Pandastealer family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-