Detects inbound messages that carry DOCX attachments which contain artifacts associated with malicious document templates. The rule triggers when an inbound data source includes an attachment with a file_type of docx. It then explores (file.explode) the DOCX content and searches for YARA matches. Specifically, it looks for a YARA rule namemalicious_docx_document_template_artifacts to indicate the presence of template-based artifacts commonly used to weaponize documents for credential harvesting or evasive exploits. This rule combines file analysis with YARA-based pattern matching to identify malicious document templates used in phishing or credential-stealer campaigns.