Last active
October 28, 2018 21:15
-
-
Save mak/894eaa9a6fc5df0aee88 to your computer and use it in GitHub Desktop.
dridex new config storage
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| struct cfg_t { | |
| int field_0; | |
| unsigned __int16 botnet; | |
| unsigned __int8 count; | |
| char unknown; | |
| ip_addr cnc[count]; | |
| }; | |
| struct ip_addr { | |
| char ipaddr[4]; | |
| __int16 port; | |
| }; |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment