The Confucius APT group—long associated with cyber-espionage operations targeting government and military organizations in South and East Asia—has resurfaced with a newly upgraded attack chain. Researchers at Knownsec 404 Advanced Threat Intelligence Team have uncovered a sophisticated new modular backdoor framework dubbed “Anondoor”, designed to deliver customized espionage payloads and evade traditional sandbox detection.