Detected #SmartApeSG infection chain
Compromised site
-->
universaltechnology[.]top/lsg/track.js (injected)
-->
universaltechnology[.]top/lsg/index.js (clickfix)
-->
northwindimmigration[.]com/head.php
-->
northwindimmigration[.]com/mwiszsws.zip
-->
94[.]158.245.63:443 (NetSupport, EVALUSION, NSM165348)
d71c2041f1712a8e4548bb5835671766d5d50d6f69d81f6745fb858d72f7cb55 mwiszsws.zip