Technical information
- Adware.Dowgin.3.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) zi.si.07####.cn:80
- TCP(HTTP/1.1) h.mobc####.com:80
- TCP(HTTP/1.1) zd.sd.07####.####.net:80
- TCP(HTTP/1.1) api.mobc####.com:80
- a####.u####.com
- api.mobc####.com
- h.mobc####.com
- zd.sd.07####.cn
- zi.si.07####.cn
- zd.sd.07####.####.net/offer/20181204/201812041054759.png
- zd.sd.07####.####.net/offer/20190403/201904031138116.apk
- zd.sd.07####.####.net/offer/20190403/201904031407486.png
- a####.u####.com/app_logs
- api.mobc####.com/cells/data.php
- h.mobc####.com/h5/h5.php
- zi.si.07####.cn//efe
- zi.si.07####.cn//wfe
- zi.si.07####.cn/16retsamrotideotohp/8930/efe
- zi.si.07####.cn/16retsamrotideotohp/8930/pfe
- zi.si.07####.cn/16retsamrotideotohp/8930/qfe
- zi.si.07####.cn/16retsamrotideotohp/8930/rfe
- zi.si.07####.cn/16retsamrotideotohp/8930/sfe
- zi.si.07####.cn/16retsamrotideotohp/8930/tfe
- zi.si.07####.cn/16retsamrotideotohp/8930/ufe
- zi.si.07####.cn/16retsamrotideotohp/8930/wfe
- /data/data/####/.imprint
- /data/data/####/ApplicationCache.db-journal
- /data/data/####/MobCells.xml
- /data/data/####/MobCellsCache.xml
- /data/data/####/MobCellsConfig.xml
- /data/data/####/MobCellsHView.xml
- /data/data/####/_mgphotoeditormaster_r.xml
- /data/data/####/_mhphotoeditormasterqs.xml
- /data/data/####/_mjtphotoeditormasterp.xml
- /data/data/####/ads-117689207.jar
- /data/data/####/com.cntools.android.kloe.jar
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/index
- /data/data/####/mobclick_agent_cached_com.cntools.android.photo...aster5
- /data/data/####/mobclick_agent_online_setting_com.cntools.andro...er.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/zscom.db-journal
- /data/media/####/246ce0ed1e801fca5eaacd180eef473a
- /data/media/####/3676186eba272
- /data/media/####/6eec05aaf91db9e68f9960a74aff3b43.tmp
- /data/media/####/9506cb1659705
- chmod 777 /storage/emulated/0/download/omcn//6eec05aaf91db9e68f9960a74aff3b43.tmp
- DES
- AES-CBC-PKCS5Padding
- DES