All Windows machines have been infiltrated by the CIA under a project codenamed ‘Angelfire’ – allowing the U.S. government to load malicious programs onto a persons computer without their knowledge.
‘Angelfire’ consists of five elements – ‘Solartime,’‘Wolfcreek,’ ‘Keystone,’ ‘BadMFS,’ and the ‘Windows Transitory File system.’
Rt.com reports: ‘Solartime’ modifies the partition boot sector of Windows XP or Windows 7 machines when installed, allowing the ‘Wolfcreek’ implant to load and execute. ‘Wolfcreek’ can then load and execute other ‘Angelfire’ implants.
Previously known as ‘MagicWand,’ ‘Keystone’ loads malicious user applications on the machine which never touch the file system, leaving “very little forensic evidence that the process ever ran” according to WikiLeaks.
‘BadMFS’ is described as a library which stores all drivers and implants that ‘Wolfcreek’ can activate. In some versions it can be detected, but in most it’s encrypted and obfuscated, making it undetectable to string or PE header scanning, used to detect malware.
‘Windows Transitory File system’ is used to install ‘AngelFire,’ according to the release, allowing the addition or removal of files from it.
WikiLeaks says the leaked ‘Vault 7’ documents came from within the CIA, which has in turn refused to confirm their authenticity. Previous releases include details on CIA hacking tools used to weaponize mobile phones, compromize smart TVs and the ability to trojan the Apple OS.
Latest posts by Sean Adl-Tabatabai (see all)
- YouTube Ban David Icke From Appearing In Search Results For Kids - March 17, 2018
- Poisoned Russian Spy Was About To Prove MI6 Fabricated Trump Dossier - March 17, 2018
- Text Messages Reveal FBI Agent Was Friends With FISA Judge In Flynn Case - March 17, 2018