Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//ORCON//NOFORN
9.4.1 Build Outputs
The Build Outputs subshell is used to define what Implant and Deployment
executables the Builder should generate. The Build Outputs subshell is accessed
through the Builder wizard or by not providing parameters to the build_outputs
command in the Builder.
Interface
The Build Outputs subshell will repeatedly prompt the user for output types until
the build outputs are generated. The subshell accepts two types of input:
commands and build types. After each input, the subshell will update and display
the state of the outputs list.
Commands
The following commands are used to modify the build outputs:
d <index>
Delete a process image name from the program list.
index
Index of the target program name in the current list
g
Generate the program list and build the patch used in the configuration field for
Implant executables or tasks.
Build Types
The subshell accepts the following build types:
all
Build all available Implant and Deployment Executables
run-dll
Build the Implant DLLs, 32- and 64- bit
service-dll
Build the Implant Service DLLs, 32- and 64- bit
executable
Build the Implant EXEs, 32- and 64- bit
injection
Build the Injection Launchers, 32- and 64-bit, and
Extractor
service
Build the Service Installers, 32- and 64- bit, and Extractor
ice_dll
ICE V3 DLLs, 32- and 64-bit
pernicious_ice_dll
DLL matching the NSA Pernicious Ice specification
75
SECRET//ORCON//NOFORN