Needy.H is a Java applet based trojan that downloads
and executes a trojan downloader. Needy activates
when user views a web page or HTML E-mail that contains
a reference to the trojan file.
The Needy.H is activated when a web site containing the
trojan is loaded with unpacthed Microsoft Internet Explorer
browser. When the JAR file containing the trojan is executed
it uses Microsoft Internet Explorer VerifierBug vulnerability to get
full privileges by escaping the Java security, and execute its
code.
When executed the trojan downloads an executable from web server
saves it to users home directory and executes it.
![](/images/pixel.gif"){kind=tracking}
