WikiLeaks dumps documentation for a tool called CherryBlossom, a multi-purpose framework developed for hacking hundreds of home router models. The tool is by far one of the most sophisticated CIA malware frameworks in the CIA’s possession. The purpose of using the tool is to allow operatives to interact and control SOHO routers on the victim’s network. French security researcher X0rz noticed a small detail that might help investigators track down Cherryblossom installations. The default URL for the tool’s installation guide is is “https://CherryTree-ip-address/CherryWeb/”””
Source: https://www.bleepingcomputer.com/news/security/cia-created-toolkit-for-hacking-hundreds-of-routers-models/