Vault 7: Projects
This publication series is about specific projects related to the Vault 7 main publication.
1.0 Overview
The program is meant to be executed directly from a USB thumb drive, and requires being run as
SYSTEM. Dumbo will log all actions, taken either automatically or manually, in a file called
“log.txt” located in the same folder as the program’s execution. Dumbo will also log all
processes running at the start of its execution in a file called “proclist.txt” located in the same
folder as the program’s execution.
GUI.exe: Main executable for Dumbo v3.0. Requires being run as SYSTEM. If run as
Administrator, the program will attempt to restart itself as SYSTEM. This file can be
renamed as desired.
GUI.exe Command-Line Options:
• -n : do not take automatic actions on network or Bluetooth adapters
scanner.sys: Driver necessary for program to run correctly on 32 bit Windows XP.
Driver will automatically be installed and removed, if necessary. Driver must be named
“scanner.sys” and be located in the same folder as the main executable. The driver is not
needed, and will not be installed, on any operating system other than 32 bit Windows XP.
wscupd.exe: Executable used to shutdown 32 bit operating systems. This file must be
named “wscupd.exe” and be in the same folder as the main executable.
wermgr.exe: Executable used to shutdown 64 bit operating systems. This file must be
named “wermgr.exe” and be in the same folder as the main executable.
Dumbo-v3_0-Field_Guide.pdf