Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom FAT Procedures
3.7 Test 7: Flytrap Copy Test
3.7.1 Description
This test verifies the copy feature.
3.7.2 Test Setup
No additional setup required (see 2.3).
3.7.3 Test Procedure
Step Execute Action Expected Results Req
1 (CherryTree Tester) Assign
Mission “FAT Test 7 (Flytrap
Copy Forever Test)” to Flytrap
(Assign -> Missions page). Be
sure to click the Assign button at
the bottom of the page.
(CherryTree Tester) Verify Flytrap
has received new Mission at
expected time (“Flytrap Details”
page will report “Current Mission”
as the one just assigned).
6.1.1
6.1.2.1.2
6.1.2.2.1
6.1.6
6.1.7
6.2.1
6.2.4-5
6.2.7
6.3
2 (Flytrap Tester) Generate an
email Alert – open Google or
Yahoo search page, type
“abc1@def.com”.
(CherryTree Tester) Verify Email
Alert is received (ticker at bottom of
page should light up and View-
>Alerts page should show new
entry with correct info)
6.1.2.2
6.1.2.2.2
6.1.2.2.3
6.1.2.2.3.1
6.1.2.2.3.2
6.1.2.2.4
6.1.7
6.2.2
6.2.4
6.2.6
3 (Flytrap Tester) Surf to some
random websites for 15+
minutes (copy action has no time
out in this Mission).
(CherryTree Tester) Verify
existence, size, and timestamps of
Copy data (View->Alerts and click
on the “download” link under the
“Copy Data” column for the Alert
just received). Download the copy
file and open with Wireshark (may
not be installed on Terminal) or
binary editor (look for DNS entries
matching sites surfed to).
6.1.2.2
6.1.2.2.9
6.1.7
3.7.4 Test Cleanup
No additional cleanup required.
3.7.5 Pass/Fail Criterion
See “Expected Results” in table.
UNCLASSIFIED
26