General

  • Target

    2025-07-04_b565ec84ed8e1730a66ebd3a7c11d21a_amadey_elex_smoke-loader_stop

  • Size

    5.1MB

  • Sample

    250704-nzjrxasnx2

  • MD5

    b565ec84ed8e1730a66ebd3a7c11d21a

  • SHA1

    649cb2cdad34cc7abfdded5be2ab3f51e88845c5

  • SHA256

    f3f33f03ccfc2eca74245498caa4b3a0a8dd5334c9eae86a44ac7f89434a3a31

  • SHA512

    c8e42d97e6f5976b6819669ecf05ce308b960c06866883058a0f40f58d28bdb4d4fda93ec58b48a24819f7b54cb44484ec71ed24c6a4deca9835240a4ef07c53

  • SSDEEP

    98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLE:0jJS

Malware Config

Targets

    • Target

      2025-07-04_b565ec84ed8e1730a66ebd3a7c11d21a_amadey_elex_smoke-loader_stop

    • Size

      5.1MB

    • MD5

      b565ec84ed8e1730a66ebd3a7c11d21a

    • SHA1

      649cb2cdad34cc7abfdded5be2ab3f51e88845c5

    • SHA256

      f3f33f03ccfc2eca74245498caa4b3a0a8dd5334c9eae86a44ac7f89434a3a31

    • SHA512

      c8e42d97e6f5976b6819669ecf05ce308b960c06866883058a0f40f58d28bdb4d4fda93ec58b48a24819f7b54cb44484ec71ed24c6a4deca9835240a4ef07c53

    • SSDEEP

      98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLE:0jJS

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks