Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET STRAP 2 UK EYES ONLY
3.8 Configuration options
These options can be configured on a per-deployment basis if desired:
Option Value Range Default Explanation
deploymentID 0 – 65535 1 This is the unique deployment ID to be deployed with each installation of EXTENDING
deathDate
15:23:59 28-
07-2013
This is the Death Date of EXTENDING. It should only be used in situations where an NTP server
is to be used and available. The Death Date should be configured in the format: hh:mm:ss DD-
MM-YYYY e.g. 15:23:50 17-07-2013
audioRecordingMode 0 – 3 1
This setting specifies how audio will be exfiltrated by the EXTENDING application.
0 = No Audio Recording
1 = Audio Stored to disk; Exfiltration by USB only
2 = Audio Stored to disk; Exfiltration by USB or WiFi
3 = Audio Stored to disk and streamed Live to Live Listening Application; Locally stored files can
be retrieved by USB.
fakeOffMode 0 – 2 1
This Setting controls when EXTENDING records audio from the built-in microphone.
0 = Records at all times;
1 = Records when TV in Fake-Off mode only;
2 = Records when TV on only;
PublicKey Dummy key
The public RSA key associated with this EXTENDING Deployment. Generated during the set-up
of the base end.
usbDeletekeyFile delkey
The name of the key file EXTENDING should look for on a USB stick when performing a manual
uninstall. EXTENDING will only manually uninstall if the “usbDeleteKeyFileGUID” is contained in
the “usbDeleteKeyFile” on the USB stick.
usbDeleteKeyFileGUID
{1234-09876-
asdf-wert}
The GUID that must be contained in the “usbDeleteKeyFile” for a manual uninstall to take place.
usbDownloadKeyFile loadkey The name of the key file EXTENDING should look for on a USB stick when exfiltrating audio.
EXTENDING will only copy files to the USB stick if the “usbDownloadKeyFileGUID” is contained
PAGE 8 OF 31
SECRET STRAP 2 UK EYES ONLY