Trojan.Java.SawRAT.A is a Trojan that targets the Windows platform. The malware can accept various commands from the attacker to perform tasks on the victim's machine such as collecting system information including operating system name, username, hostname, list of available drives, capturing screenshots, file exfiltration and more.

An access control bypass vulnerability has been reported in HAProxy. The vulnerability is due to improper parsing of incoming HTTP requests with empty header names.

PUA.BAT.CrackFamatech.A.component file transfer.

Threat Encyclopedia

1234167

MALWARE-C2 Trojan.Java.SawRAT.A TCP Connection -1

High

2025/03/03

1232442

WEB HAProxy h1_headers_to_hdr_list Empty Header Name Access Control Bypass (CVE-2023-25725)

Critical

2025/03/03

1236373

MALWARE-FILE-TRANSFER PUA.BAT.CrackFamatech.A.component -1

High

2025/02/27

1236374

MALWARE-FILE-TRANSFER PUA.BAT.CrackFamatech.A.component -2

High

2025/02/27