Technical information
- Adware.Dowgin.14.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) f2.doodlem####.com:80
- TCP(HTTP/1.1) yi.gi.y####.com:80
- TCP(HTTP/1.1) googl####.g.doublec####.net:80
- TCP(HTTP/1.1) c.appj####.com:80
- TCP(HTTP/1.1) d239g0z####.cloudf####.net:80
- TCP(HTTP/1.1) newfeat####.perfect####.com:80
- TCP(TLS/1.0) h.online-####.net:443
- TCP(TLS/1.0) con####.ta####.com:443
- TCP(TLS/1.0) d####.fl####.com:443
- TCP(TLS/1.0) ws.tapjo####.com:443
- TCP(TLS/1.0) ssl.google-####.com:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- c.appj####.com
- con####.ta####.com
- con####.ta####.com
- d####.fl####.com
- d239g0z####.cloudf####.net
- f2.doodlem####.com
- googl####.g.doublec####.net
- h.online-####.net
- newfeat####.perfect####.com
- rrx68gi####.d.aa.####.net
- ssl.google-####.com
- ws.tapjo####.com
- yi.gi.y####.com
- d239g0z####.cloudf####.net/featurescreen/PrisonEscape.jpg
- d239g0z####.cloudf####.net/icons/icon_PrisonEscape.png
- googl####.g.doublec####.net/mads/static/sdk/native/sdk-core-v40.js
- yi.gi.y####.com/i?a=####
- c.appj####.com/ad/splash/stats.html
- f2.doodlem####.com/feature_server/fullScreen/get.php
- f2.doodlem####.com/feature_server/geo-ip/test.php
- newfeat####.perfect####.com/featureview/getfeatureview/
- <Package Folder>/.jiagu/libjiagu.so
- <Package Folder>/app_doodlemobile/####/1510833291018.log
- <Package Folder>/app_sslcache/h.online-metrix.net.443
- <Package Folder>/cache/####/data_0
- <Package Folder>/cache/####/data_1
- <Package Folder>/cache/####/data_2
- <Package Folder>/cache/####/data_3
- <Package Folder>/cache/####/index
- <Package Folder>/cache/ads1732384039.jar
- <Package Folder>/databases/google_analytics_v4.db-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal
- <Package Folder>/files/####/.jg.ic
- <Package Folder>/files/.FlurrySenderIndex.info.AnalyticsData_PC...BY_172
- <Package Folder>/files/.FlurrySenderIndex.info.AnalyticsMain
- <Package Folder>/files/.flurryagent.30e08fbd
- <Package Folder>/files/.flurrydatasenderblock.7c384a3b-9b03-46f...60afad
- <Package Folder>/files/gaClientId
- <Package Folder>/files/org.tcztc.fwhnl.bz.jar
- <Package Folder>/shared_prefs/.dmgames_prefs.xml
- <Package Folder>/shared_prefs/28b07.xml
- <Package Folder>/shared_prefs/ThreatMetrixMobileSDK.xml
- <Package Folder>/shared_prefs/ad_show_time.xml
- <Package Folder>/shared_prefs/jg_app_update_settings_random.xml
- <Package Folder>/shared_prefs/settingFile.xml
- <Package Folder>/shared_prefs/tjcPrefrences.xml
- <SD-Card>/.dmplatform/####/aHR0cDovL2QyMzlnMHo2N2pjdGVkLmNsb3Vk...BuZw==
- <SD-Card>/.dmplatform/####/aHR0cDovL2QyMzlnMHo2N2pjdGVkLmNsb3Vk...pwZw==
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- libjiagu
- trustdefender-jni
- DES
- RSA
- AES-CBC-PKCS5Padding
- DES