Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//NOFORN
________________________________________________________________________
Output:
COMMAND: get flag=0 filename="c:\temp\myfile.txt"
8.3.2.3 (U) Put
(S//NF) This command will send a file to the target. The local file must be present during the
generate command. The request will also fail if the directory does not exist on the target.
Usage: put remote_filename=<filename> local_filename=<filename>
Example: put
[put] - upload a file to the target
Description: local filename to use
local_filename (string):c:\temp\myfile.txt
Description: remote filename on target
remote_filename (string):c:\windows\system32\a.txt
Output:
COMMAND: put remote_filename="c:\windows\system32\a.txt" local_filename=
"c:\temp\myfile.txt”
8.3.2.4 (U) Memload
(S//NF) This command will load a DLL onto the target in the same address space as the target
service. The nickname option can be used to reference this specific DLL for unload.
Warning
(S//NF) The nickname is case sensitive.
Usage: memload pre=0 post=0 nickname=<string> filename=<filename>
Example: memload
[memload] - load a DLL onto the target
Description: amount of time prior to command processing (0-default)
pre-delay (number):
Description: amount of time after command processing completes (0-default)
post-delay (number):
Description: a unique name used for this module
nickname (string):mymodule
Description: specific DLL module to load on target
filename (string):c:\temp\magic.dll
Output:
COMMAND: memload pre=0 post=0 nickname="mymodule" filename="c:\temp\magic.dll"
SECRET//NOFORN 32