What does [TYPE] mean in powershell
I'm currently working on deobfuscating a piece of powershell code used in a trickbot campaign.
I understand that the script is initializing a system directory object to create a new directory, but I don't understand what [TYPE] actually does or why it is required.
I have tried to google this, but I cant really find any satisfying answer.
Set-Item 'variAblE:8TKm0' ([TYPE]"system.io.directory");
(Get-Item 'variAblE:8TKm0').Value::"CreateDirectory"($HOME + "\Frv3p35\Ntwhagi\");
Its a data type: The most common DataTypes (type accelerators) used in PowerShell are listed below.
[string] Fixed-length string of Unicode characters
[char] A Unicode 16-bit character
[byte] An 8-bit unsigned character[int] 32-bit signed integer
[long] 64-bit signed integer
[bool] Boolean True/False value
[decimal] A 128-bit decimal value
[single] Single-precision 32-bit floating point number
[double] Double-precision 64-bit floating point number
[DateTime] Date and Time[xml] Xml object
[array] An array of values
[hashtable] Hashtable object
- Slice a PowerShell array into groups of smaller arrays
- POST request with Powershell 2.0 using cURL
- How to escape special characters in PowerShell?
- Create a list of items that are common between objects
- powershell script to show git info and just the working directory
- Add items to an PowerShell array, and process the array in batches
- Cannot Bind Argument to Parameter 'NewName' because it is an empty string
- Getting exit code from the application running in a container (kubernetes)
- Right usage of 2>&1 | tee or | tee with powershell
- rename files down to 3 characters then delete them if they are 6 mo old
- How to remove all CRLF's at position 51 in a file, processing the file in reverse order
- Powershell 7 Invoke-Restmethod Upload to SharePoint Online Circular Errors
- in powershell, set affinity in start-process
- Powershell script throws error (80040154 Class not registered) only when it is executed from codedeploy, Why?
- How to change default scheduled task process priority in Windows
- Azure Devops pipeline failing due to AZ.Accounts Module update by MSFT
- Powershell in NonInteractive mode
- Cast $PSBoundParameters to [HashTable] to enable .Clone()
- How to add empty rows in output csv?
- How to get an MD5 checksum in PowerShell
- Only write over data to csv line without losing previous data?
- PowerShell - check if installed driver is latest version available in Windows Update catalog
- How to fill PowerShell input with a Python Script?
- PowerShell Script with Clixml and Task Scheduler
- PowerShell formatting of netdom query fsmo into a simple HTML report
- How do I get the localhost name in PowerShell?
- Quasar dev PSSecurityException
- How to set Win32_ProcessStartup parameters in Powershell?
- How can I open jupyter in a venv with a shortcut?
- Elevate / Sudo on PowerShell