Threat Intelligence Report

CAPI Backdoor: .NET Stealer Targeting Russian Auto-Commerce

📅 November 5, 2025 📰 www.seqrite.com 🔍 0 CVE(s) referenced

A sophisticated spear-phishing campaign is targeting Russia's automobile and e-commerce sectors with a new .NET-based backdoor, CAPI, capable of data theft, persistence, and evasion, leveraging fake tax documents and malicious LNK files.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle