Technical information
- Adware.Dowgin.3.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) star####.edges####.net:80
- TCP(HTTP/1.1) dts.startap####.com:80
- TCP(HTTP/1.1) m####.a####.com:80
- TCP(HTTP/1.1) oc.u####.com:80
- TCP(HTTP/1.1) dm.bd.5####.####.net:80
- TCP(HTTP/1.1) dsa.startap####.edg####.net:80
- TCP(HTTP/1.1) culp####.com:80
- TCP(HTTP/1.1) na.ac.upqian####.com:80
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) l####.chartb####.com:443
- TCP(TLS/1.0) foodeli####.com:443
- TCP(TLS/1.0) a3.chartb####.com:443
- a####.u####.com
- a3.chartb####.com
- c####.startap####.com
- culp####.com
- dm.bd.5####.net
- dts.startap####.com
- foodeli####.com
- im####.startap####.com
- imp.startap####.com
- l####.chartb####.com
- m####.a####.com
- na.ac.upqian####.com
- oc.u####.com
- www.go####.com
- www.startap####.com
- culp####.com/path/lp.php?trvid=####&trvx=####&appid=####&devid=####&crea...
- dm.bd.5####.####.net/ad/20170705/201707051157602.png
- dm.bd.5####.####.net/ad/20171207/201712071116111.png
- dm.bd.5####.####.net/ad/20180102/201801021309162.apk
- dsa.startap####.edg####.net/tracking/adClick?d=IAAAAAAgAAA6X1tPSEVGXFpaU...
- dsa.startap####.edg####.net/tracking/adImpression?d=IAAAA####&position=#...
- dts.startap####.com/image/fetch/f_auto,q_80,w_124,h_124/http://static.ak...
- dts.startap####.com/static/images/close-btn-infra.png
- dts.startap####.com/styles/compressed/fullpage_3d_spinning_cube_infra.20...
- m####.a####.com/sdk-core-v40.js
- star####.edges####.net/1.3/getadsmetadata?publisherId=####&productId=###...
- star####.edges####.net/1.3/gethtmlad?publisherId=####&productId=####&os=...
- a####.u####.com/app_logs
- na.ac.upqian####.com/_b/c.jsp
- na.ac.upqian####.com/_b/i.jsp
- na.ac.upqian####.com/_b/in.jsp
- na.ac.upqian####.com/_b/l.jsp
- na.ac.upqian####.com/_b/s.jsp
- na.ac.upqian####.com/box/init.jsp
- oc.u####.com/check_config_update
- /data/data/####/_acoicemotozlz.xml
- /data/data/####/_bcoicemotozln.xml
- /data/data/####/_bxcoicemotozls.xml
- /data/data/####/_cocoicemotozlr.xml
- /data/data/####/_gcoicemotozls.xml
- /data/data/####/a3.chartboost.com.443
- /data/data/####/ads-751425397.jar
- /data/data/####/afc.pro
- /data/data/####/com.medicalgamestudio.icemotozl_preferences.xml
- /data/data/####/com.startapp.android.publish.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/exit.html
- /data/data/####/f_000001
- /data/data/####/ficemotozl.jar
- /data/data/####/http_media.admob.com_0.localstorage-journal
- /data/data/####/icemotozloc.jar
- /data/data/####/index
- /data/data/####/live.chartboost.com.443
- /data/data/####/mobclick_agent_header_com.medicalgamestudio.icemotozl.xml
- /data/data/####/mobclick_agent_online_setting_com.medicalgamest...zl.xml
- /data/data/####/mobclick_agent_state_com.medicalgamestudio.icem...ml.bak
- /data/data/####/mobclick_agent_state_com.medicalgamestudio.icemotozl.xml
- /data/data/####/uscom.db
- /data/data/####/uscom.db-journal
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/.nomedia
- /data/media/####/7e265867124e773e7ee5144c9e05b36f20fe43bc.png
- /data/media/####/80350644de42bf683e322f67b038573934013ca2.png
- /data/media/####/a3bf3e9859b3cbad5560e72c736c82ed3a1eb4fa.png
- /data/media/####/afc.pro
- /data/media/####/egnaro_etceles_egap_d
- /data/media/####/egnaro_gbntb_d
- /data/media/####/ehcac_ntb_mottob
- /data/media/####/elcric_cs_d
- /data/media/####/enil_efas
- /data/media/####/enil_efas_d
- /data/media/####/enil_jt_d
- /data/media/####/erahs_ntb_mottob
- /data/media/####/eulb_gbntb_d
- /data/media/####/gb_datuctrohs_d
- /data/media/####/gb_gmi
- /data/media/####/gb_gmi_d
- /data/media/####/gb_mottob
- /data/media/####/gb_pot
- /data/media/####/gb_pot_d
- /data/media/####/gb_sdrowda
- /data/media/####/gb_tluafed_d
- /data/media/####/kcab_pop
- /data/media/####/kcab_pop_d
- /data/media/####/lecnac_ntb_mottob_d
- /data/media/####/llatsni_ntb
- /data/media/####/llatsni_ntb_d
- /data/media/####/llatsni_ntb_mottob
- /data/media/####/lomron_egap_d
- /data/media/####/n_kcehcp
- /data/media/####/na_csppa_d
- /data/media/####/neerg_gbntb_d
- /data/media/####/noci_efas
- /data/media/####/noci_efas_d
- /data/media/####/ntb_erom_pc_d
- /data/media/####/ntb_meti
- /data/media/####/ntb_mottob_pop
- /data/media/####/ntb_mottob_pop_d
- /data/media/####/ntb_rehto_pc_d
- /data/media/####/ntbesolc_pot_x
- /data/media/####/ntbesolc_potd_d
- /data/media/####/nwod_worra
- /data/media/####/nwod_worra_d
- /data/media/####/p_kcehcp
- /data/media/####/pot_ntbseolc_d
- /data/media/####/pu_worra
- /data/media/####/pu_worra_d
- /data/media/####/rats_m
- /data/media/####/tnetnocppa
- /data/media/####/wolley_gbntb_d
- MedicalGame
- DES
- AES-CBC-PKCS5Padding