Threat Description



Aliases: Needy.L, Java/Needy.L
Category: Malware
Platform: W32


Needy trojan family consists of trojans thatare written in Java and use vulnerability in Microsoft Internet Explorer Java Runtime. Usually these trojans change Internet Explorer homepage and search settings and some variants also download executable trojans.

This variant Needy.L changes Internet Explorer start page and search settings to adult sites and downloads trojan executable.


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.


Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.

Technical Details

The Needy.L is activated when a web site containing the trojan is loaded with unpacthed Microsoft Internet Explorer browser. When the JAR file containing the trojan is executed it uses Microsoft Internet Explorer VerifierBug vulnerability to get full privileges by escaping the Java security, and execute its code.


Detection in F-Secure Anti-Virus was published on June 29th, 2004 in update:

Detection Type: PC
Database: 2004-06-29_02

Description Details: Jarno Niemela, June 29th, 2004;


Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More