The installer file is a Microsoft Word document (.doc) that exploits a previously unknown kernel vulnerability that allows code execution. We contacted Microsoft regarding the vulnerability and they’re working diligently towards issuing a patch and advisory. When the file is opened, malicious code executes and installs the main Duqu binaries.
Microsoft has confirmed the vulnerability but we don’t (yet) have a patch for it.
Keep your eyes open, folks.