Website hacked via unpatched Woocommerce plug-in...

See where it was reported and the VT scan given (yes, avast detects that macro-malcode):
https://urlhaus.abuse.ch/url/187931/
See file detection: https://www.virustotal.com/en/file/1dced2e0d06a8d07a7333bee2a1836bedbe830c7f7a30439fd34dcc00140315c/analysis/1556624602/
for the code that caused it: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=Yn17fHRodHxre31zdF11fXMuXl1tYA%3D%3D~enc

polonus