1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
|
#pragma once
#define PRNE_CNC_TXT_REC "CHANGE.ME.test"
#define PRNE_BNE_LOGIN_ATTEMPT 0
#define PRNE_BNE_EXEC_NAME "httpd"
#define PRNE_BNE_LOCK_NAME "CHANGE ME"
#define PRNE_RCN_PORTS {\
/* 22 */ 0x00, 0x16,\
/* 23 */ 0x00, 0x17,\
/* 2323 */ 0x09, 0x13\
}
// Array of 5 byte elements: 4 byte IPv4 address followed by cidr
#define PRNE_RCN_T_IPV4 {\
/* 0.0.0.0/0 */ 0, 0, 0, 0, 0\
}
#define PRNE_RCN_BL_IPV4 {\
/* current net */ 0, 0, 0, 0, 8,\
/* loopback */ 127,0, 0, 0, 8,\
/* link-local */ 169,254,0, 0, 16,\
/* multicast */ 224,0, 0, 0, 4\
}
// Array of 17 byte elements: 16 byte IPv6 address followed by cidr
#define PRNE_RCN_T_IPV6 {\
/* ::/0 */\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0\
}
#define PRNE_RCN_BL_IPV6 {\
/* unknown */\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
128,\
/* loopback */\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01,\
128,\
/* IPv4 mapped */\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0xff, 0xff, 0x00, 0x00, 0x00, 0x00,\
96,\
/* IPv4 translated */\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0xff, 0xff, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
96,\
/* IPv4/IPv6 translation */\
0x00, 0x64, 0xff, 0x9b, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
96,\
/* routing discard */\
0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
64,\
/* link-local */\
0xfe, 0x80, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
10,\
/* multicast */\
0xff, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\
8\
}
|
