Phishing attack uses Word macros to propagate malware infection
This attack relies on social engineering, as it attempts to convince the user that macros must be enabled to properly view the document, which appears blurred when it's opened. Once the user does so, a sequence of events is set in motion. A batch script runs and executes a Visual Basic script that in turn runs a PowerShell script and that downloads the malware, which appears to be a trojan that can log keystrokes and copy the contents of the clipboard.
Find out more here: