A new batch of CIA documents published by WikiLeaks on Friday includes 27 manuals detailing a malware installer framework codenamed "Grasshopper."
This software allows the spy agency to get around computer security measures to secretly install "customized malware payloads" — basically, weaponized programs that operate without the computer owner's permission or knowledge — that are tailored to the target's computer.
Grasshopper can be used with a module dubbed "Stolen Goods," which in turn uses a third-party malware called Carberp, which is thought to be code of Russian origin. The Carberp code the CIA employs is reportedly substantially modified and its components "were carefully analyzed for hidden functionality, backdoors, [and] vulnerabilities" that could put CIA malware projects at risk of external interference.