Detected #SmartApeSG infection chain

Compromised site
-->
www[.]ski-snowboardvancouver[.]ca/d.js (injected)
-->
gralino[.]top/realm/audit-worker.js
-->
gralino[.]top/realm/throttle-template.php
-->
gralino[.]top/realm/role-asset.js (clickfix)
-->
vexnali[.]com/cc/info (HTA)
-->
vexnali[.]com/ss/look (ZIP)

ec7350861106cdb07ea23d9cb39b45221d5979979d4c4727d3e41e866a0778e2 look