The creativity and research seen in Anti-virus evasion is interesting, not to considered the "maturing" nature of AV industry :)
We have, multiple times in the past, came across Microsoft Office related exploits packaged and delivered as MIME HTML documents with a .doc extension. Surely Microsoft Word is known to handle and process such documents. Recently we came across a well known exploit for MS12-0158, which is detected by almost all major Anti-virus software in its raw form, however we noticed 100% evasion against the common AV products, when delivered as a MIME HTML package
more here.........http://blog.3slabs.com/2014/07/word-exploit-delivery-using-mime-html.html
We have, multiple times in the past, came across Microsoft Office related exploits packaged and delivered as MIME HTML documents with a .doc extension. Surely Microsoft Word is known to handle and process such documents. Recently we came across a well known exploit for MS12-0158, which is detected by almost all major Anti-virus software in its raw form, however we noticed 100% evasion against the common AV products, when delivered as a MIME HTML package
more here.........http://blog.3slabs.com/2014/07/word-exploit-delivery-using-mime-html.html