Clever huh? Not sure if this is the proper forum so mods please feel free to move. Thanks! http://blog.morphisec.com/iranian-fileless-cyberattack-on-israel-word-vulnerability
Not bad, but easily tackled by sandbox and process execution blocker. In other words, tools like Sandboxie, VoodooShield and EXE Radar.