Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//NOFORN
SECRET//NOFORN
5
Cherry Blossom x86 Flytrap
CONOPS
TOO installs Cherry Blossom x86 Flytrap software on a laptop
computer running Fedora Core 14 operating system (provided)
TOO positions the laptop in the desired location, i.e., in proximity to
the normal AP and target client device(s)
TOO connects laptop to AP as a wireless repeater or router
Based on a stronger signal from the Flytrap, the target client
connects to the Flytrap rather than to the normal AP
The Flytrap beacons to the IOC CherryTree LP/CP server and
downloads mission tasking from the server.
If the Flytrap detects packets to or from a “target” (MAC address,
email address, chat name, or traffic with specified keyword strings),
it can execute specific actions at the direction of the LP/CP,
including:
sending an alert to the LP/CP,
copying traffic to LP/CP,
redirecting the target’s web requests to web sites under COG control
using the latest Windex interface, or inserting traffic.

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh