Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//NOFORN
SECRET//NOFORN
IOC ERB:
13
IV&V Observations (cont.)
Observation 8:
Context: On Windows Vista, SP2, 64-bit OS with BitDefender
Total Security at default and high settings:
An alert pop-up window immediately appeared, which stated
‘Active Virus Control has detected and blocked a potentially
malicious application’
The executable process failed to run, hence the payload was not
dropped
This alert is recorded in the log file
EZCheese did return survey and file collection data
Impact: The payload was not deployed on the target with the
above configurations
Workaround/Recommendation: Update the User Manual to note
this behavior

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh