Previously Trend Micro reported on the exploit being used by the trojan named TROJ_MDROPPER.BH. Currently Trend is looking deeper on this because of allegations that the exploit being used might be an unpatched powerpoint vulnerability. We will update you on this matter as soon as we have more information.
Update(Jasper, Tue, 22 Aug 2006 09:49:12 AM)This malware is not a zero-day exploit. Although this malware exhibits the same behavior of other malware in terms of the vulnerability that they exploit ( MS06-12 ), the actual shellcode of this malware fails to execute properly. More information about this malware can be found here.