diff --git a/testing/btest/Baseline/scripts.base.protocols.smb.smb1/smb_files.log b/testing/btest/Baseline/scripts.base.protocols.smb.smb1/smb_files.log
new file mode 100644
index 0000000000..7892e90f09
--- /dev/null
+++ b/testing/btest/Baseline/scripts.base.protocols.smb.smb1/smb_files.log
@@ -0,0 +1,11 @@
+#separator \x09
+#set_separator	,
+#empty_field	(empty)
+#unset_field	-
+#path	smb_files
+#open	2016-03-07-17-23-56
+#fields	ts	uid	id.orig_h	id.orig_p	id.resp_h	id.resp_p	fuid	action	path	name	size	times.modified	times.accessed	times.created	times.changed
+#types	time	string	addr	port	addr	port	string	enum	string	string	count	time	time	time	time
+1403194573.484358	CXWv6p3arKYeMETxOg	192.168.1.78	55770	192.168.1.53	445	-	SMB::UNKNOWN_OPEN	-	(empty)	0	1403193605.830790	1403193605.830790	1403193211.405449	1403193605.830790
+1403194573.484701	CXWv6p3arKYeMETxOg	192.168.1.78	55770	192.168.1.53	445	-	SMB::UNKNOWN_OPEN	-	Test	0	1403193632.973276	1403193632.973276	1403193604.628965	1403193632.973276
+#close	2016-03-07-17-23-56
diff --git a/testing/btest/Traces/smb/smb1.pcap b/testing/btest/Traces/smb/smb1.pcap
new file mode 100644
index 0000000000..bbcf5a12be
Binary files /dev/null and b/testing/btest/Traces/smb/smb1.pcap differ
diff --git a/testing/btest/scripts/base/protocols/smb/smb1.test b/testing/btest/scripts/base/protocols/smb/smb1.test
new file mode 100644
index 0000000000..61727754dc
--- /dev/null
+++ b/testing/btest/scripts/base/protocols/smb/smb1.test
@@ -0,0 +1,4 @@
+# @TEST-EXEC: bro -b -r $TRACES/smb/smb1.pcap %INPUT
+# @TEST-EXEC: btest-diff smb_files.log
+
+@load base/protocols/smb