Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//ORCON//NOFORN
--initial-wait
SECONDS
period to wait after startup before beaconing
--backoff
FACTOR
backoff factor to modify beacon interval
If beacon fails, multiply beacon interval by factor.
If beacon succeeds, restore beacon interval to default.
--max-interval
SECONDS
maximum time interval between beacons
set_blacklist [PROG [PROG ...]]
Set the running blacklist configuration.
PROG
image name of program to include in the blacklist
set_whitelist [PROG [PROG ...]]
Set the running whitelist configuration.
PROG
image name of program to include in the whitelist
Communication Configuration
The communication configuration commands are used to modify the settings
related to how Assassin communicates. This includes both the transports used
for communication and the size of upload chunks.
set_transports
Set the running transport configuration.
This command will enter a sub-shell to create the transport configuration; see
section 10.4.6 on the Transport Sub-Shell.
set_chunksize BYTES
Set the running chunk size configuration.
BYTES
maximum number of bytes to upload each beacon; 0 == no
maximum
Operation Window Configuration
The operation window configuration commands are used to modify the settings
related to the time window during which the Implant will operate. This includes
hibernate, scheduled uninstall, and failure threshold settings. Note that once an
uninstall has been scheduled by date or timer, it cannot be removed.
set_hibernate SECONDS
Set the running hibernate configuration.
101
SECRET//ORCON//NOFORN

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh