The Bangladesh embassy web site in Cairo has been compromised so that it distributes malicious Word documents, which install malware downloaders onto an infected computer. VirusTotal detects the MSBuld.exe file as a password-stealing Trojan, but Trustwave states that this is Godzilla Loader. The Word document included the EPS, or Encapsulated PostScript, CVE-2017-0261 vulnerability, which allows for remote code execution on the affected computer. Unfortunately, the domain owners never responded to Trustwave’s emails and the site continues to be compromised.
Source: https://www.bleepingcomputer.com/news/security/web-site-for-a-bangladesh-embassy-compromised-with-malicious-docs/