Security researchers at Palo Alto Networks spotted a campaign leveraging Microsoft Office loader using malicious macros to drop multiple malware families. The Office loader was used to drop several malware such as LuminosityLink, KeyBase, PredatorPain, Ancalog, Bartalex, Pony, and DarkComet. The researchers analyzed more than 650 unique samples of this specific loader since early December 2016, accounting for 12,000 phishing emails targeting numerous industries. Most affected industries are High Tech, Professional and Legal Services, and Government.”]
Source: https://securityaffairs.co/wordpress/56251/malware/office-loader-malware.html