Mala Attacks in Sand Boxes

It took 17 hours for the command control traffic to show up. It's now using warnable microsoft sequel and my sequel service in order to install additional tools like ghost crinch, the remote access tools. I see a lot of mala going after either macrosof sequel or my sequel but really not much that sort of goes after both because typically the infection chain is quite a bit different.