WikiLeaks published documentation on the CIA Angelfire project, a malware framework developed to infect Windows computers. Angelfire is made up of five components, each with its own purpose: Solartime, Wolfcreek, Keystone, BadMFS and Transitory File System. The leaked documents include a long list of issues, including DLL persistence on XP is not supported, and the Keystone component always disguises as a “C:Windowssystem32svchost”” process
Source: