Malware Analysis Report

2025-01-19 07:00

Sample ID 240523-bx2tgsgh84
Target 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b.apk
SHA256 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b
Tags
discovery evasion persistence collection credential_access impact
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b

Threat Level: Likely malicious

The file 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b.apk was found to be: Likely malicious.

Malicious Activity Summary

discovery evasion persistence collection credential_access impact

Checks if the Android device is rooted.

Checks memory information

Loads dropped Dex/Jar

Queries information about running processes on the device

Registers a broadcast receiver at runtime (usually for listening for system events)

Obtains sensitive information copied to the device clipboard

Checks Android system properties for emulator presence.

Queries the mobile country code (MCC)

Checks CPU information

Checks known Qemu pipes.

Declares services with permission to bind to the system

Acquires the wake lock

Requests dangerous framework permissions

Checks if the internet connection is available

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-23 01:32

Signatures

Declares services with permission to bind to the system

Description Indicator Process Target
Required by remote views services to bind with the system. Allows apps to share and display views across different processes. android.permission.BIND_REMOTEVIEWS N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an app to post notifications. android.permission.POST_NOTIFICATIONS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-23 01:32

Reported

2024-05-23 01:35

Platform

android-x86-arm-20240514-en

Max time kernel

174s

Max time network

192s

Command Line

com.houdatv.app

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /system/bin/su N/A N/A
N/A /system/bin/failsafe/su N/A N/A
N/A /system/sd/xbin/su N/A N/A
N/A /system/xbin/su N/A N/A
N/A /data/local/su N/A N/A
N/A /data/local/bin/su N/A N/A
N/A /data/local/xbin/su N/A N/A

Checks Android system properties for emulator presence.

evasion
Description Indicator Process Target
Accessed system property key: ro.bootloader N/A N/A
Accessed system property key: ro.bootmode N/A N/A
Accessed system property key: ro.product.model N/A N/A
Accessed system property key: ro.product.name N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks known Qemu pipes.

evasion
Description Indicator Process Target
N/A /dev/socket/qemud N/A N/A
N/A /dev/qemu_pipe N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Processes

com.houdatv.app

Network

Country Destination Domain Proto
GB 142.250.187.195:443 tcp
GB 142.250.180.10:443 tcp
N/A 224.0.0.251:5353 udp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.178.14:443 android.apis.google.com tcp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.11.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 srv14.e-droid.net udp
DE 82.165.61.18:443 srv14.e-droid.net tcp
US 1.1.1.1:53 adsmetadata.startappservice.com udp
SG 168.138.179.114:443 adsmetadata.startappservice.com tcp
US 1.1.1.1:53 infoevent.startappservice.com udp
SG 168.138.175.122:443 infoevent.startappservice.com tcp
US 1.1.1.1:53 info.startappservice.com udp
FR 68.232.34.193:443 info.startappservice.com tcp
FR 68.232.34.193:443 info.startappservice.com tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 195.181.164.19:443 html.e-droid.net tcp
US 1.1.1.1:53 www.mediafire.com udp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 1.1.1.1:53 www9.mediafire.com udp
US 1.1.1.1:53 www.osn.com udp
US 104.16.113.74:443 www9.mediafire.com tcp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 1.1.1.1:53 static.a-ads.com udp
US 104.16.113.74:443 www9.mediafire.com tcp
DE 136.243.11.250:443 static.a-ads.com tcp
US 45.60.155.96:443 www.osn.com tcp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 1.1.1.1:53 shahid.mbc.net udp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
US 1.1.1.1:53 www.bein.com udp
US 1.1.1.1:53 www.elsafa-nwes.com udp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
US 1.1.1.1:53 upload.wikimedia.org udp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
US 1.1.1.1:53 zovidree.com udp
US 104.21.16.31:443 zovidree.com tcp
US 1.1.1.1:53 psimpuphoako.com udp
NL 139.45.197.243:443 psimpuphoako.com tcp
US 1.1.1.1:53 bytogeticr.com udp
US 104.21.17.211:443 bytogeticr.com tcp
US 1.1.1.1:53 my.rtmark.net udp
NL 139.45.195.8:443 my.rtmark.net tcp
US 1.1.1.1:53 ak.gaizoopi.net udp
NL 139.45.197.245:80 ak.gaizoopi.net tcp
US 1.1.1.1:53 ak.gaizoopi.net udp
NL 139.45.197.245:443 ak.gaizoopi.net tcp
NL 139.45.197.245:443 ak.gaizoopi.net tcp
US 1.1.1.1:53 yonmewon.com udp
US 1.1.1.1:53 my.rtmark.net udp
US 1.1.1.1:53 safebrowsing.googleapis.com udp
NL 139.45.197.236:443 yonmewon.com tcp
NL 139.45.195.8:443 my.rtmark.net tcp
US 1.1.1.1:53 ggbet-online.net udp
US 1.1.1.1:53 sr7pv7n5x.com udp
US 172.67.194.197:443 ggbet-online.net tcp
NL 212.117.190.201:443 sr7pv7n5x.com tcp
US 172.67.194.197:443 ggbet-online.net tcp
US 1.1.1.1:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 172.67.194.197:443 ggbet-online.net tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.201.100:443 www.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
US 1.1.1.1:53 bqtqjzdefk udp
US 1.1.1.1:53 vllnprxrwpstqba udp
US 1.1.1.1:53 cpeemme udp

Files

/data/data/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 c5471551a004624db16e151d214840b6
SHA1 0e30b3e0d37ff25c56b4c02c514899f8846acea8
SHA256 3e53ea73028d6cced480584070baec8177096401e5bd827a011f592ebe356bf6
SHA512 35157144d59447b31fe465556605af68b191cc01daceac38900ea72a5a30565f22dc3701846006ce9015ead06c3b5b38ae72db8a308d1b1e50d5a73d0416d7a7

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 823915d0e307eaba32552c5f17251c8e
SHA1 aa44d228efa3705a9720bb82f66fa82af67e2d1a
SHA256 e1e1a477bf8b93b317c6d3b741bae856403075eccf6cc46408a889457f12f01b
SHA512 804514a43398fcffd0a93cb930e67b13d5d344eafe8498ed80c67ec579453238c4c2728dfe537a2ed2e326dd94b3ddca9c6d99a155e034b348df814269bec201

/data/data/com.houdatv.app/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 40c0c2715e70dc6afc76fe35ed4be18e
SHA1 97a3ec99923b41d7a7105b077d152b55f1c2c674
SHA256 d840cc4ef71f25bf70c6ef778c2588a0ee75085ff4fa642c079c5beff03e45b8
SHA512 440285d4c26494714953b8cbc048991a013b7ccbd27eb9caf29ec9f843d6ea5d9231150808cf3a1d1abe6a9712e056d9951c632f657e8c1031b2e1d68b13185a

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 ea4089414cc7774d3e15d080843865ac
SHA1 33fadf1d1063f42fcffec6e94a36092e7e6591b6
SHA256 196372db7c50023765bc77e06bee6ddc3e561a363cd268e14f8df74a76842329
SHA512 5252909bdaef3c8e06d32a45d30a294995cad3adcb6af0b63fbc5e1e835771939782ee6414366332f336d7db02daad465258ea91b1a33e7b4f39b37fac1f60cd

/data/data/com.houdatv.app/files/PersistedInstallation8381548214913179664tmp

MD5 d71e92935e45d1ad236a831c3dfac551
SHA1 0838514882e6b1ddc3b0d7e18830459423c625a2
SHA256 d78a644104792739de12e66977511a142be56ca0f496c63fd8dab4fc587e07c2
SHA512 ba55546357485cc9bfff1e228ab877e2f8735ddefd5171b29d27100ab88ab9360c917c51bbef47e2d10ef2d410b3b23bd7d9957a84c7fed5cf4353b6b0249d9e

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 993ba2a90c9401f14bec8d38299b649f
SHA1 921edb90279bcda7262d280a8fab1966e49068cb
SHA256 2e3891d2c203f8a49989031e8ce080f3170ca06c20e6c6011a9aceea9472c162
SHA512 a5b98d2532ed02ba8c77641091b7b2ab9e525a8334981c4876b3f71df8499386bbc076961891ee1c450de10202e6b5c2a3c343cb9231584113cc8f8f1a32425d

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 6dcb1285a8d546abb922c3f50b9ddbf2
SHA1 69c4608963074ea3b8399edb73431a83c6779960
SHA256 94dbd826f4f6d236090fe0e98727d1a1b3c798c9fb7c269caa580bfb23447803
SHA512 1f32cbfb16ba339de8e42925d31de9412f6f21d77dbe9b4981c99349d53e42deeefa7ff694ea609de7a97e0e4c73c8d67d0fafe41a55c095cccabca94d228f24

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 5e0223391634f8e03beb6f526ce1cd8e
SHA1 c83ad9564b872219359bd963c71a7e0980341ff4
SHA256 d4a4b7f690290ceb29b5214b4bdd40ff77e509e56e616a9ff275855e31663ff7
SHA512 a81470aae1f6a0604ccc0c4318cdaa708339df1937f97c925e640ca845bbe3d069e9c022daa0bd97d1a921a500a4b43ac83d335aff7a48eccf958f7742434b7f

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 54e3afcc23d5967b04b01c6a80e7af9a
SHA1 6f033fc6faf75cf277ad9124ed13d7829a721a98
SHA256 a3a39019cf6c7cce1f7bb35479033c6cbc52fb2a7900bf7739485a5cfe33d61a
SHA512 536e4ba7bb8e496e42318e95d9d9341d15723a092a3f217d4c250d2d6c29027a12ae0b327b0b733b9a1dd8ead4b828bb91a06989d25c4065b7d02fce2439293b

/data/data/com.houdatv.app/files/PersistedInstallation6900898653587469072tmp

MD5 f92690097fda452feb70f0423abdbd6d
SHA1 9afe4742f20496c73802ad1eae83f373f7f108cc
SHA256 7b3e275a0b24917b888ffdcc5c2a3ca0ac9bb4cecceaed20c198f00c7f241724
SHA512 30e796d766567dc612d6ccb93371b2ffd051b3e582c94204e335d8aa62c8028afb2f825f45385f8bdbc65ace78a6f8aa993fd901b4b2456207e09ec7ce0e38dc

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 3607a28c375ad28b26ad3672ec094e35
SHA1 603410cae8518ba350566f6a4948c019a18b87b4
SHA256 0010033f5281430dee4f6c54ee2e3606803cf81acd2c55ae6e836281983c2d8b
SHA512 9381108d4278e5fa9bce4a46fe6cbdbf2f044eb63dbeaac09a2469ca53561ac70b13afce0af92a738bad72c5ddbc09216d6b514a9463d9c51c649c69430b3d90

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 bf407269356db9082510d468e8d2b8af
SHA1 b03112cf3fc56f0fd244d9565bfc75f6f95b28d6
SHA256 f146b6bd63f50a84f1b508513ab410c43b453a6e03119f56bcc80885c2502d45
SHA512 7b4906713716796b09ae24456c387fcadec360b16306e5f1aa071c811b035d2aa3a4e3d711d18248455b78a489ddc188526675e5dc0ef2e85720316c1c719854

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 acbf751b28dc6ef89947bb4235111d1d
SHA1 1e21940b11192f38a8918b30dfddca0b38135c19
SHA256 36dfc86829b9f6a063319781938e249972ae9842674f4db2b4f1bb3b598cc043
SHA512 3286246b95c36bf80d239d89fa6f923f92bf6fc8a93222256f99388a73a9d25e4aa399ff843ed39784c2dd3355913cedaebe60cec13a97bcb781d9a23d097afc

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 db30a5c3eafba3c520676820699af35b
SHA1 07d755d60ed940e3a2487901a3a54020b563d18d
SHA256 f9e12a660aacee1714a02ec7503ab1593bfd71cf8d2fd15ed537e75167d1ed26
SHA512 62bbd943c255baf21a0b1f04126a591656d8e23510325653d36ad4cfdde0e01d8c08cc4fe2164d8273f8fb0f7498403de2114a04e0f031d320f7478ca3167e1d

/data/data/com.houdatv.app/files/vinebre_ac.txt

MD5 c77539865008f03384baf2e6da8bc07e
SHA1 a687dc2083990afd14736fa58f81c789b8c3b1a2
SHA256 3adc718953f056b60b9c54038eeb5e3eb3b13815c37394716fe90cdf6c9986b0
SHA512 3a6543a6a27a8dc037c700a745280b7471f93533f2fa721203752a515ebedde96ccd7cc1b7bad806e7f108cca97700510acf86e8e349e08e1f0f7516a074821b

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 e4961a54e56cb8bf1f68a3e38188e8c9
SHA1 ebf6cfd7b53eb876988e4ca259667af5e975900c
SHA256 da54179a732353d362bc89dff360f3ade16a1b73557500a60f898805c9cf83b7
SHA512 45d4cba2e287b068e9f5cfe81cb766e62c71796249c0a6ca047cc779fbcb6a3b221b3e82cdba35920be526d8db59dfed8c3dcc2e49f7166265829a885a26d06e

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 543d598e435eadc04b7ee00ba53db5d8
SHA1 a311d593f9083f663b674fca53e325416df16f7e
SHA256 54984287d87eff3fc557718d2bcd949d404397d979895550b275b2b56b89b97b
SHA512 f0986b1c8d99b6bef3cbfdadb631baea7a5d86f78e6306ab7fc16fc6731c0f9869f5b58221023172b7f655071fcac2142f4817fc57cb24a041e4d529909876f0

/data/data/com.houdatv.app/files/splash

MD5 29617f24b987ee71e30d61b85b3ce724
SHA1 67933da59449bdf537e26790486acb0246ac1df8
SHA256 7ce78e46a0340f336b19b46c5ae401650bd9ef87073dc096b22d8f523c8e9ca3
SHA512 72eeb8bc60eb2ac8acfff9b54840e551177075eced4f685e24a3100e835510a629b3d6d1091a1b492b5fb0fce0beb2822f68bf4bbe4a75612bba0e16ffc1f732

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 9c606a141acb80d6ff881afb870d5ec5
SHA1 3a849427a782091084ccf9c688422d01ba8abb83
SHA256 5d29da80f04a219ead3c38296f5ea443a7165b204722d59c13607f3b3daf4ade
SHA512 67b23fffa74bf73d7ed9adb84670253165911281d078f74fe0066bc802f62d5e096d86420efdd6e92b5a94f18a40d7606f331a101e962c2af666fb8786d2cb91

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 7864f3ec0539e2344bc3306d1e422b1d
SHA1 c7735460b20e8d3285c4ea2a6b9afb6f0e269cd7
SHA256 62fa6a53e44552f259e23a56ce2a505d1fdbd2a618caabe54766fcdee53c8981
SHA512 b1c6e3304ffc150a35e07086f91b860e14f74db746bdd9dbc940df7f27e204f1b80dba268a2e43c3b3ea563cb6d3b6b7580b069a94bb16f67b89d9cbdc5f0e9f

/data/data/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/data/com.houdatv.app/files/ico_share

MD5 0eae458ed1d8d82ce5a8bc928b7cf2a5
SHA1 14cc1c11188c08019572784d5efc733f2b47bfd9
SHA256 129d1099fd8af34e7ab77b852bdbe981667a04db6ad01e455d0c7b5de894bbe0
SHA512 4629b7f2339bd71dd429b8e6fcd51ae1015d12a09e1e963ee4529b034b85739379321cf5315d48fbf34fe9b133ed5b36d8a3d4231aabffe3d3924f4a7ab48115

/data/data/com.houdatv.app/files/shared_prefs_sdk_ad_prefs

MD5 987cb051364aa6bea7d04c511cc9c24e
SHA1 9af0868fd62c3a0b4e575e4e1a982e4e77a42f83
SHA256 442119e7d928fb4104db389d612cea7e759921dfab3054367414d3fe7e6392ca
SHA512 48a57fb0e3d08471df1ac3a2fac19e3a59bc1b487aee5281bc70e30952428022e2f3d032ad5775e56bf21264b9f0f874e719cd3a377a152675e7a8ef17c6c1b6

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 f2edb52f722f7bd3ec847f97a7c4b57f
SHA1 05ec029e2df32578e9ecd68babd598df021a09b4
SHA256 ced89f0d517331154be9a1ef2e555b217385c989e54681459cbce66caec02343
SHA512 2e3fffbf55432f359f6afb5961ad9ee82d9833dbc57976e6a498ff89a910a93718df90eb67451b683e0ce8398129931107ee227469e88709109a064af1e887eb

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-wal

MD5 e6fd7014a9ff3c85fae2035eca690d35
SHA1 3be7fea82ad9098b64290227f1f84a7a2f5de05b
SHA256 9ec5b6dcd67ad1a9cfb0116fe43c8c55306d31858dd3bc3f1f85d0f9348ce03c
SHA512 79330077cc43d0aef31b089f165f8a2ee2fcf1c36d79390fccee17bb35d28b75e52ee06749f5bedc3f0648b07c71d67aca32d99321044427ed730d8ef0d44603

/data/data/com.houdatv.app/files/StartappAdsMetadata

MD5 8a723a0f878231e2dd5a1f6553d8d760
SHA1 b51cbf922133f526a707608712c097a59db5c3b5
SHA256 4838a425d1caca4f73a2a6fcb705d16e342ec8b503a697207a39091b16d4b4b7
SHA512 24aa98c1dfc0b671f65bc738bd33ac1b38966c7400f21e06d0e51e5a4754d823f4271f39616f77e4857d42832500d539d5ef6ab3e1e637448c31e93ed5a5eca6

/data/data/com.houdatv.app/files/StartappBannerMetadata

MD5 30d37a9e3c4e758d2314d47ecf43c930
SHA1 35cd5766ec858527bfe71f4b12b64b03d3c64731
SHA256 cf53c4c621e76ef87e511fc78bf74296849e46f4d11d2296e27748b5fc8493e1
SHA512 38b857c55c8fa9366f657dc1b37c7ea4df22c2d05fb68b5652c21561f07a8fc0e6c28d5a055e1698d46feb162ff3a4b1c4f044466ea7454b61234d5ef6d5db6f

/data/data/com.houdatv.app/files/StartappSplashMetadata

MD5 374a4667b0aafe77e52eb3b5f4493b67
SHA1 082e1792bc4b36a69bf688664246de8612a63d90
SHA256 651fda52854bd0f410418c7e414336c31a0e8ed8d07d2458b9dda283c5d28cee
SHA512 3372ce9d8b58be37e40ca893f08e3595838f12cecfe75d52de172a87ef85d1a99b6887f068ce0ee221f55378901580941b8a047ec1841342b4bc1b903bb0e9b8

/data/data/com.houdatv.app/files/StartappCacheMetadata

MD5 7e42a6d37f84dd8e1422afca1fca3e83
SHA1 2955117ba56391dba9374d8ecf97cb5d2587ee20
SHA256 e5a75ecdc34044b930a3d9b754ea2a1c416e51e5403aa38c19893b8b1808f462
SHA512 92231b00eea92ce8548527cb99e23ebf0261fe6c104c2657987545ed4010f69d8d951353792c7cd8eeafb8f7d413cecd23b15c22bc289ae48e8c574c57127bf2

/data/data/com.houdatv.app/files/StartappAdInfoMetadata

MD5 a2e4667f06077a73d1e115f921cc39be
SHA1 6b258aba61d010a4cc8e3b3b2fff8f61f0a1eb90
SHA256 22ceb1507b82a9206b83a302c8904192e66fd24ddd1baa66a3f3e3e5f3425c34
SHA512 075e89ed9200e3d26aa9eccb7d5beb219d2490fcff786abae51375bbc2e2cb147d79b1587766edd3e1ea31da4e8028ec7d6fed8ef4a6ece2ff02f8ca38b42b32

/data/data/com.houdatv.app/files/StartappMetadata

MD5 664bc6beb630f2b3b1ef1875014b9acd
SHA1 d74efff5d69fe945755633452faf7b39e7070c05
SHA256 55324fc67ef9361e340f55a02aa0aefdf42a42d53382095603b3305b0f6c9959
SHA512 01fd0bb8e786c1757dc036bcf6765b49f0432ce7e3d06ec99cb0a14edd1447809484c7943ea1f8810928abf8782b6c57097deead2e3e36c1b1dc39208f0a42f0

/data/data/com.houdatv.app/files/close_button.png

MD5 4d332a5c731fb506bb4644c91c38f5fc
SHA1 56fdadb5d38b29161910b3c89ce57b1aae67733a
SHA256 43e7ff284e786cced9a54218970d357ff06374836bc1791eb63d9bf26c6a3784
SHA512 c791b70329e32559d99f0259b38a832bc849768cab37973567a04fe8f66e9f5477136014ac17d16d1a0df0ca0f4fdad86d6a5f29581c85068b7979fb9e73b7c6

/data/data/com.houdatv.app/files/back_.png

MD5 527385c9a7dadd870919fb95ce4ff227
SHA1 a83ddb0ba89e4f83a07d6e0524d6ea900e800c2c
SHA256 3df2ccce7702c69051afd3fe66cf99e3f07e86d354956eba3888ddbaf545e717
SHA512 3b2f1781552f701331e91eb46fd38a982b2a9de8eb7259e912a710c63399fbe86fcdbe4c41fd8b8f34b99773a94cb02024e9ec64c38aeea68ef378de4f842355

/data/data/com.houdatv.app/files/browser_icon_dark.png

MD5 c954c504c75c8ba2b112deb64869f78d
SHA1 5b594778f7a5bdac4e41de2d6c81225d5e329e0f
SHA256 37ee870f153d26b3956abcead4c45160b264fde6ca016bc2d330e9e36060ee46
SHA512 af1705681c3a2ef83427c853d310bc2dd6159f5db1c1b5a5740431a5a928b4c6541dcd5e3fcffd6c06697b87ca740a0ce2473e2cf141f21ee13730f325d4403b

/data/data/com.houdatv.app/files/back_dark.png

MD5 74860bc33c04b72a4848a5d7b97bec5f
SHA1 336856eed4d49ebd0d429877822ac5781b4a18eb
SHA256 fb479f88bc809d106fc15c465079b19f6027a01ecbd0d79267147c0529adea69
SHA512 9b6993ba917c3a687b0df03deaf9e5e6ac41d3606ef148e259eb32de8c41203249063059a11bd598b860f2e3d795c73cd339c5325f80a2623745e7003f6586aa

/data/data/com.houdatv.app/files/forward_.png

MD5 795fe2fffc9505398b787eb2f15f440e
SHA1 c124812df2fbd8e4a65fb104aaab352ba300a57a
SHA256 976cb8c0c715b0b0e8b4769b51af1a08f06a4823d69b1f5284fec4531da21fb7
SHA512 c698c060692567afea47446d58d32e92b0bc922088c99e175f5125b264c20d425fe7dddc4b0d70fe9f53d41cfb87ef52965cd40934f21c9f5e2b9281dee72389

/data/data/com.houdatv.app/files/forward_dark.png

MD5 ae1702688d33694b08e2f990527fd179
SHA1 fccea348af9e98608b152c1e35307d04a1cddeb1
SHA256 87916bc88b54b8602b2f43695d34b196b5cc8948ccb6576b24cced2feacb245f
SHA512 aa0aa7306867900ec765e0645e2666ae1a913fb1bc67ba205b3b80d1b37089bd8692c2b34fca233ed3bcfe89a42f095a375df787d5c29ced86bd040981110d2c

/data/data/com.houdatv.app/files/x_dark.png

MD5 2e42562e9d02dafe67ac6404f58289b7
SHA1 c37072894b2169be2643dd5e541ff8dfccecebe2
SHA256 2f70939006596d2496c26284508e70ef260968eae1385c220e91e74b58e0d13a
SHA512 a65a9fff0c6e17c322d0f0d6e0233fcca6d701a331a0fbc7da7eb21474c11875bd0e3edafc6c1df248ba85f22fc47b403d5668316405adcd8f6e4907a893d3bf

/data/data/com.houdatv.app/files/filled_star.png

MD5 4ef85932c17e863921c9bbdf1394fe92
SHA1 f3811986d3648be1ca89162a079aff4644fe26d7
SHA256 0d6e7d7a915944adfb498a45a6db96efc77d0112ba1f374461868e257315dfa3
SHA512 1ba7939efbd515f81333a155064e248de27b2c70cc71004136ab9d3c61ad34baab7f1d00529e1c78d4cdf11deddbad2376d27d5ab1af699a9d29c5b5da7f4db1

/data/data/com.houdatv.app/files/empty_star.png

MD5 136e73ffc6805e043bf61a12b3755b1a
SHA1 b7bd8ee6bd46f7bf3a2f21879e71ff4684e56361
SHA256 ecf9d2a4448842086066d82fecd6ec372497298bfef3c8e3fd17a97187a3e7bc
SHA512 62a12a8070955026e27e6c146d46bc44a345b0b4752e1c45487f06224e11c42490344b259ee6fe51fb6e9847cf4146abd7d4fbd0274d0f2c532868bc4be5d527

/data/data/com.houdatv.app/files/logo.png

MD5 5f93b7b61e5bcf973fd93c049061023e
SHA1 7c154666967abc13d9d38c9b79eb6933db64566f
SHA256 4e537f889054c9f1dfb4b1a30c34ea180310dbc9b9bcc9123605f0f802a24557
SHA512 d96bb4c9daab3b2a72a3d82682a8f66ee85a0eb525a87afd13f46de949ee8a02d9a560da6584ecd658681c93a13df03d9a0f57382fdc40f56b2541a51e858a67

/data/data/com.houdatv.app/files/half_star.png

MD5 ba75be02cd7e410fa660a1783b0fff3c
SHA1 b5b60389112f5c6179878423c6c97eb5ab1680b4
SHA256 77a060cb9e3f9a5eb52654135d00106d36208f3d38878ca3b752ca1af85cf42d
SHA512 9985e466e1652eed843a9dd97832b8ee9bad05cd591a4b17548e876ac65c6cfa4da4f46e83dddf89f9fb1924d92dbf21ce13e66059d5cc7dbe0500cf0c0e7b0c

/data/data/com.houdatv.app/cache/startapp_ads/keys/2013968401

MD5 41707e2613db8f7b22fafb51b6226589
SHA1 e278f00eb633ec6c46fb8b0bcb948dcb1144cefd
SHA256 cfdaf6fe39abbd9210a638c08208be36a6a594882c180cc57290d836d314a1b5
SHA512 761a0193b7a1a16d99cf1c21b87f5960765295c7f5adc326df7cc5eba10cd4bd5199b017f6c3faf034c836ce748bbf8c5e3fe74fbb0683e7ec70d6a3e07c42d9

/data/data/com.houdatv.app/cache/startapp_ads/interstitials/2013968401

MD5 ee0949cf054b30bd71ffe7ed1b858f33
SHA1 eb7f08f5d4783062064c07c5d349fa89f77dafa7
SHA256 e79b7caeac8f70930c6e2fdd9f9a90b3150722dba33c611b9bea37e0490ce31a
SHA512 399db949eb23f1640a7742aa8b1e758b61cbfbb36d9582fb96fd5514586ba548bdcc702b0dee11fc739ea4d83e8d78d7aa4c15b87ef4ac16186a3b4033c6d4c2

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-23 01:32

Reported

2024-05-23 01:35

Platform

android-x64-20240514-en

Max time kernel

173s

Max time network

195s

Command Line

com.houdatv.app

Signatures

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /product/framework/com.google.android.maps.jar N/A N/A
N/A /product/framework/com.google.android.maps.jar N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Processes

com.houdatv.app

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 216.58.204.74:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 172.217.169.14:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.179.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 142.250.200.2:443 tcp
GB 172.217.16.228:443 tcp
GB 172.217.16.228:443 tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.11.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 195.181.164.20:443 html.e-droid.net tcp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 1.1.1.1:53 www.osn.com udp
US 1.1.1.1:53 www.mediafire.com udp
US 1.1.1.1:53 static.a-ads.com udp
US 1.1.1.1:53 www9.mediafire.com udp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
US 45.60.155.96:443 www.osn.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
DE 213.239.209.209:443 static.a-ads.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
DE 213.239.209.209:443 static.a-ads.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 1.1.1.1:53 shahid.mbc.net udp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
US 1.1.1.1:53 www.bein.com udp
US 1.1.1.1:53 www.elsafa-nwes.com udp
US 1.1.1.1:53 upload.wikimedia.org udp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
US 1.1.1.1:53 zovidree.com udp
US 104.21.16.31:443 zovidree.com tcp
US 1.1.1.1:53 psimpuphoako.com udp
NL 139.45.197.243:443 psimpuphoako.com tcp
US 1.1.1.1:53 bytogeticr.com udp
US 104.21.17.211:443 bytogeticr.com tcp
US 1.1.1.1:53 my.rtmark.net udp
NL 139.45.195.8:443 my.rtmark.net tcp
NL 139.45.195.8:443 my.rtmark.net tcp
US 1.1.1.1:53 ak.gaizoopi.net udp
US 1.1.1.1:53 accounts.google.com udp
BE 142.251.168.84:443 accounts.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 ak.gaizoopi.net udp
BE 142.251.168.84:443 accounts.google.com tcp
NL 139.45.197.245:443 ak.gaizoopi.net tcp
NL 139.45.197.245:443 ak.gaizoopi.net tcp
US 1.1.1.1:53 safebrowsing.googleapis.com udp
US 1.1.1.1:53 yonmewon.com udp
US 1.1.1.1:53 my.rtmark.net udp
NL 139.45.197.236:443 yonmewon.com tcp
NL 139.45.195.8:443 my.rtmark.net tcp
US 1.1.1.1:53 ggbet-online.net udp
US 1.1.1.1:53 sr7pv7n5x.com udp
US 104.21.52.33:443 ggbet-online.net tcp
NL 212.117.190.201:443 sr7pv7n5x.com tcp
US 104.21.52.33:443 ggbet-online.net tcp
US 1.1.1.1:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 104.21.52.33:443 ggbet-online.net tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
US 1.1.1.1:53 srv18.e-droid.net udp
DE 82.165.61.18:443 srv18.e-droid.net tcp
US 1.1.1.1:53 hwxkssx udp
US 1.1.1.1:53 rjwukddsw udp
US 1.1.1.1:53 cmokuzbcwqercbm udp

Files

/product/framework/com.google.android.maps.jar

MD5 4899aca36d1ed747a447dcac0d101a62
SHA1 32e43edc0bf3e036683ea8639472e6cd31ab9929
SHA256 67a651acd867e046fb4463b31ea584c1468f7243a9d1e2efd34059e8ee2f130f
SHA512 50b23dd279a9efba566c6a6523c7537723c0cd6dd3e4871f1cbdb8d5bc355caa3ddea99452b1c8e5356802f812b3768066a9848b93d715bb8bdfa455b704285f

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 e4b450eec2a4606c42e0b92ddb0939ab
SHA1 7137d6fc4f10440eda55387eee4961d2b4bc7c9c
SHA256 8d7066f86f523dfcd0baa05ca98ec9edde506dcebd3f22b3bebc358440786180
SHA512 edcb980a898258a934c56cf33a917f8c2e3f56e53fe5e9bdf664f327e01962d930e1a469da2d13bfffe5f211eb211dcbd8294eb990cbcc1fccc7c8e29ec22609

/data/data/com.houdatv.app/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 0577ddbe16fe4bd2063debbc5b9e2f02
SHA1 6748a4ce79e21481411e241d5ac9686c1bf98e27
SHA256 bcac48bbabed6753f764ebeaf9edcc6241074afdefbd0b18654522a20e60f0d7
SHA512 36e65d440fa56a1a9ef947d65cb57cff3b8b1c94942344a9ab9d293850bb5eeafe49b98a6672ffd0abd8d8015ffef7cd8e51d73283e35cab529893af33e058c2

/data/data/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 e41339563a47d72303ae7301e3b72ff6
SHA1 5aa2f26bb6d8f18a7bade0f339cc3354daee6c80
SHA256 60575d0eb827489104487a58b7c820b7e7655f052a52bbe80d60facd25ce9fd1
SHA512 dedc52ef4ad910ec88316de10604c1ff6e2ee6d6a0191a87036256834851128d0f1187185ce19af5a535b5d827646443441effe6b87a5a62db20cac44f211064

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 6e2f2ce8f6b8c4cb2519ef3b350327e5
SHA1 b6535b398e28ea23033ba0d9c9a72eab6a16a420
SHA256 4053ceea84528b0aa373cdfb3bb31874ac60f609062bb5ecea29cc866b263d3c
SHA512 b033366b00e38f3a10f80c011c7ba513f201d1d91faf0db4c81f465a1fac063eea23cd43765e2909bc1363de1411365b40fef2bb17686742a07d167fda26802c

/data/data/com.houdatv.app/files/PersistedInstallation3779380433518286654tmp

MD5 70f7fa9026f60e26b1a7015fa8193b1a
SHA1 197355030f36bdc8b16c238b18fa6ebbac735c76
SHA256 c80776bc821fcf808037a5708c252cb7070289364050e63be2441aa9a7a82fd2
SHA512 49ce726b566a4d1b4256a9b9f7963a69ec974d53c46323c65584032c952f30918fc3df0fd7fb35198213e2be4b3b6f9b11f55b116b9ca7a8c90b3d2574279b64

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 3d515c114eebce77ae5dd4b22c170580
SHA1 677baa09f3cb61a5c0b93d39c20a83439b2a5be1
SHA256 a56dab51f494efe369b66ee505c375ae820a3edef2a1a5149a52b677cb4bfdec
SHA512 3bd83b07a984462f859a658a5b24af160557769189ea3e43a6435e2eac3bcaa88fba351a655eb3bebbdbca3284ac97ca57d09147b953fed78d04e8a7df5971b2

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 eb52a90bb70b76e946b62f50b6f7fb85
SHA1 42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA256 48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512 b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 e10de24353cb5d0600acd6ec64674c2b
SHA1 e35c2ba9521b178c325e515ce48f9bd92f604f10
SHA256 eeadbb8b2b2315c9b093f2044ea6acab6906d1bb4385ed08c8e1d88e71090054
SHA512 32d766f2737d75a0c7b66d20092a606f5853da18b147da86c3761248c721135eb17ea01f36a8cd47042187d1016ff46f69de92500bad79983462feae04fc02f0

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 312771385f9e49ec8a72608b4ad0c90b
SHA1 395234c94c3af70a5c845ad48c29f0b42361c026
SHA256 497a4e74f658f0fcbd63006e34b555a8f8c28cbc2d8fa19167ad349bcc379542
SHA512 1399db85b4c8fafad7627ef4ae13baf2ceed4b719f9a23fc3eda2ee0fa65018b4226bdcfd2286496d0ba2c4a6dd87f5b0f32de7c28487c963829edb0f3d1bb30

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 5c1f93c326e0b36835861b8b2d6ffec6
SHA1 df8fd452b38802ffa21a5a905c34bdba0a95f178
SHA256 377114c4ded9e5dd8ed30ec707669a8b391014abf6cdb22bb00ca6839b3f6761
SHA512 93f64d8350e5b434b4b2e8d4cc5fe37f9f9756ba7139a94a23c3f94e82db7c5aadcac2141465e768ad9a82d82180d8e1afaa20c9d2a24361e6939b3e2551949b

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 1b36dc4bf4a82d6b36b09b9433332f9d
SHA1 e7bd9a215e5971f33bf0b28b406b27d5320c3e3c
SHA256 f583f57a421eeb3c3ac7b60dc1197706f6cb40b18f5eac1b4b07edfc328e61a4
SHA512 ff78ace4d42bfaef4bb1a62d2a0dcc13464248342215c808a87b08e741abaa532349791d9f0b2f1ef07ce6a8933298a9310df111512118df1074fb7cf0691cf5

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 19530a4b3539524eff3fc422de698371
SHA1 7c5a9648edd89b18a1762c896fafe6e5ed79480d
SHA256 c6f29ceb72b4ef2bb65db4a105cdee6a378ff2e29f5b11b0fc63e26614fc2bb1
SHA512 f58098fa78adccbdf28e26e1c3d2e9d4d6b7c78f6cc8f2c83744989f3646bbe404a566c6a2e0c5dab9373163cc7ddf0913c2ed01f3862777af02b45fc3c76a6b

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 77d63680f977f52aa8272221e595a02c
SHA1 c1f54f8cb663563ba99bd8df1a70c03424bb1070
SHA256 aaa888a8f4365d2bca8fe7664f2f1e21a3b545ddeef0b7eef67a7a8d3f795858
SHA512 2d619e67d44044317eed77ff963316cc64adaa9e0ef50e4bd381e7488c40bff0afef2df6c7f9cf3f88d7f005963c18f75eee24a246b913a8ad2559465c90604c

/data/data/com.houdatv.app/files/PersistedInstallation1766822582454971229tmp

MD5 aefbf18e8ddaa64fd4ed48991cff238c
SHA1 f6eccb7f480a47fe6681fc919e8e9f86909bd838
SHA256 be800020ed59b58b9c21f9468679a141b320c5f20232ae7dc9705fa678361dbf
SHA512 cdc00098db99544298a79c5eebc41d11d97354b916190a5065380defbd672fa86595fa5a9f1343172e3678c32c29dadd31df2d21a9e86558b9a97edd836f6ef0

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 813262304b2bb7bd7d6b3c223d0b7273
SHA1 2418172cdab6d8c7c96dad2dd534679453884e22
SHA256 31559246783d59b3bba69e9e7fb5cfa69bd775d0cbbb3120facb928e575e5f39
SHA512 baa0d885aa6f0bdf4900c4d7132ff13e17461cdae2f1cea7b6275c54aa969193239e1c917d0783e659d3354348b672d4b256a346418050e1b5de964db2efcb66

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 1470eb0b611e78734a71438d7dc1412a
SHA1 08dd4fc0f46e837b70d1e0b6ba93cd20babac722
SHA256 377cf66d7392dc7b988762a20c8b06e9846cf177128756e24b2e29beed8f17b2
SHA512 60247731bf4f336c1c52c090be47680eda50f510d5441e6eadad80155081b37bf445d80e5aaf6ed58a0725558ce1d797178151a38682c29e3b69efe1e799ccf7

/data/data/com.houdatv.app/files/vinebre_ac.txt

MD5 1f0701267a3e69dcd7dee13a4c3c7263
SHA1 86f0a4f33932b1d2e6eeb467e55fe2e3564b2250
SHA256 55cff20d1f0a2074cfe9b2fe79ee094c3b6103a0841cb76837fd69f10e6eb236
SHA512 3e4dad03f475d2a54ff30a0dd6c0ff479a2c64f8cf21d9f935ce91a0995af5af184e00662cc51152bb23b596f26bb2a08a938191630f8b1e0d347255278c114f

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 805fb988c01ce5889f18894bb7f39088
SHA1 d03f15dce19c051e0e2aeaa77ea839dd43e076f4
SHA256 4cf7dae32a1930d2d98378b264709f97d077f4687c672441f1a591da55b2d09d
SHA512 219c15d57ab15d923909cd699444a5e8bc2af912aa79afe363e30bbd5f123cdc27271279034f60841e53368d6d80bf7c8f212366d63232718b65b9df18d5afd3

/data/data/com.houdatv.app/files/splash

MD5 3be54e276c1ac41c4a0618f1df4e4ad4
SHA1 ba0c04e100e92a18a9d31c1da59d77e861d6055c
SHA256 be5d3cf6c8cddef930d412bc15d8af24ba654ca0961d6659b57ca7554866326e
SHA512 e1cf440871316ae3aa76e06821f49b06cc2429f4493317ba812a1cc52a335dbc7452815235cb5c625158c44dfccc5ce74de0543be7c6edac1a4bfc372639e30a

/data/data/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 b4c59234a08136df65bf497ba1692921
SHA1 560f87b1c906e4a13cc60661d6e0554b51cebe6a
SHA256 be34d3e03eadb6a499cdb77f3e40edca3da5938b5baddc50a259cf1e0829b714
SHA512 bd8ab4e7a84326a193fa3fa73d197f6f94449618804c9db522ee36094322d06e268792772eb4c84c00b3bbe1b6bb2e8f00dcdcc594011a52dc849b8bca81d428

/data/data/com.houdatv.app/files/ico_share

MD5 9769e88e084bee48eac8c479b429a556
SHA1 8bd33f69407f65bdc02453562a356bb51f581f56
SHA256 003772e5bb3502eaad74c39dcc197ab9009d9c0f0b679487b83b8c55eacf2332
SHA512 d8164f54fbadfa95d785519c622cdf5d9affac22eff67acc352dcf00266bd5407e9e2fea01d158d59a1e71744a0b28609d75763489f7b4a13fd54a09f489ebb5

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-23 01:32

Reported

2024-05-23 01:35

Platform

android-x64-arm64-20240514-en

Max time kernel

179s

Max time network

192s

Command Line

com.houdatv.app

Signatures

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Processes

com.houdatv.app

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.178.14:443 tcp
GB 142.250.178.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.187.200:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 142.250.187.196:443 tcp
GB 142.250.187.196:443 tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.11.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 srv18.e-droid.net udp
DE 82.165.61.18:443 srv18.e-droid.net tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 89.187.167.5:443 html.e-droid.net tcp
US 1.1.1.1:53 www.mediafire.com udp
US 1.1.1.1:53 www9.mediafire.com udp
US 1.1.1.1:53 www.osn.com udp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 1.1.1.1:53 static.a-ads.com udp
US 45.60.155.96:443 www.osn.com tcp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
DE 213.239.209.209:443 static.a-ads.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 1.1.1.1:53 shahid.mbc.net udp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
GB 18.165.201.67:443 shahid.mbc.net tcp
US 1.1.1.1:53 www.bein.com udp
US 1.1.1.1:53 www.elsafa-nwes.com udp
US 1.1.1.1:53 upload.wikimedia.org udp
GB 13.224.132.91:443 www.bein.com tcp
GB 13.224.132.91:443 www.bein.com tcp
GB 13.224.132.91:443 www.bein.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
US 1.1.1.1:53 zovidree.com udp
US 104.21.16.31:443 zovidree.com tcp
US 1.1.1.1:53 psimpuphoako.com udp
NL 139.45.197.243:443 psimpuphoako.com tcp
US 1.1.1.1:53 bytogeticr.com udp
US 104.21.17.211:443 bytogeticr.com tcp
US 1.1.1.1:53 my.rtmark.net udp
NL 139.45.195.8:443 my.rtmark.net tcp
US 1.1.1.1:53 ak.gaizoopi.net udp
GB 142.250.200.14:443 tcp
GB 172.217.169.66:443 tcp
NL 139.45.197.245:80 ak.gaizoopi.net tcp
US 1.1.1.1:53 ak.gaizoopi.net udp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 ak.gaizoopi.net udp
BE 66.102.1.84:443 accounts.google.com tcp
NL 139.45.197.245:443 ak.gaizoopi.net tcp
US 1.1.1.1:53 yonmewon.com udp
US 1.1.1.1:53 my.rtmark.net udp
US 1.1.1.1:53 safebrowsing.googleapis.com udp
NL 139.45.197.236:443 yonmewon.com tcp
NL 139.45.195.8:443 my.rtmark.net tcp
GB 142.250.200.10:443 safebrowsing.googleapis.com tcp

Files

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 abf3861948f9a670033e441518d43516
SHA1 998bd8bbceeaf726bd238c586467b16259c62a66
SHA256 a457a7b88897ee3d96593480373f0048318de1e4539b357867cb68c634cee990
SHA512 4366fd84ccd9e71eb76e99f5d7a360e62866f6302748c83a406ed0c9edfdd4f9908571d1efd5b6184d6b5497857f6b5c89068b44385351c627031a073c8a5b96

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb

MD5 7e858c4054eb00fcddc653a04e5cd1c6
SHA1 2e056bf31a8d78df136f02a62afeeca77f4faccf
SHA256 9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512 d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 c854d61f333ddb1b3dab7463c26ee9da
SHA1 6f6be0b308d9a17a5f8bbd3ec6603f39d6ec7ad4
SHA256 6986ce9edd1e7536ad58a585ec61205f923b96a0f9f5da50c931eec244160b8f
SHA512 c24e28f6d32ab86d59ac9af86560431bda855cfcbc10941806b7a42dc9f7da600331339cf16c3877a892da6a83d47ac69964efd1f46302efc75166acaba3cd61

/data/user/0/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 9990d9a029d87d6af53209709515772b
SHA1 fab3579d0cfcdaf4abf00ec3b4ce5958b9d5854d
SHA256 6bfafdd163e166931a0fbabc5d1c541f9489e189ffda1ee907a5cdcf89958469
SHA512 2dce27b6b084c08772ebce4c52a1bccdb67a696d0b20889395de5849119d8dbe9e783a7d064ded6aa22c42897f977e47000eb1dcb4e570588357203ec4697c71

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 76934eed9fa0928582395febe1523c34
SHA1 a6dc40a518072f4f33774622b1af7756ae73fa9f
SHA256 b0271d40f6293b3b4ac077e71e41a10bd65eeaba0433773cd882b262a9925b8f
SHA512 4a51d8c78b35cd39b4044f77ce7f80ac4af22aba8cb1b1df4c4eced24dfef0aaf42a01d6e7b656ef7e30cb314bf2ce1ae33bac0ebe5af5fd6f37db5fe788684f

/data/user/0/com.houdatv.app/files/PersistedInstallation3273486853222334985tmp

MD5 4caaf864aa69dba073586d966219a427
SHA1 741509b611d9ecd02c1f671831deeccd0d85d36b
SHA256 507c04706a5ca0f521e9b6c86eabf71841b62be4bf278b072d726f4b182786a4
SHA512 b0341dbca3580ef407ddc7d0ba0db0f3a487349c4f7617d96459622d6c6892a4bca8f931aaf59ac7afcf2da935c4b4934f555ebd8f17226691c4374cde723503

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 a4e04d95613e24b826e24c262210fab5
SHA1 295a82f7ffb1b4eefca51e64594d15bd41cc91bf
SHA256 542b85bedb834a8079d103f67eb9ee26ce56eacd3143c43545b6f4013ea35066
SHA512 f0eed9b6505930fdcc09e9679de94a71c4f3e9e50aa33df001fc9bc31d842efd7a7a3dbd97adc87bf1b600d9c1bbd48d585bd7c8aa1432ccc32f419560bce0c7

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA1 07ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA256 2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512 442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 8ccc181bfbc2ddaffabfa3fb1fddb5b5
SHA1 40e4b3509ad0913ea26ea16b09fb79ee5d77f650
SHA256 1d2dfcc0b3611dbb168a15ffe03111054a3c687220c0babe74ce535070cdffd0
SHA512 27c858f2aff89742030c46e7eb17ad237f77c11b562d1eb503b10d2a3d7613fa40d8c96a36861294debc88c16d9d3bd9b4b1aa73695973f5544e19ffac538885

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 39b9093f3cac1eec28589d1351db2a9a
SHA1 a9358b532065015c191f8bab668850322b8db4bf
SHA256 9784204e3a97665109005553f2e02b72c0e5aaecbce00b1a5d51beeaf08354b1
SHA512 46c458ea24d2cdccb04040981a992a5410bf602d9da277596ae49043245b3c95824b228a45bf364e2728af369bc020f67910f2ebc15679837aec3c86df278f23

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 f51978c032c2b758d6f2b2094d63cddc
SHA1 de64ab962890e935a213594888c11367c3615dbd
SHA256 6ca333fa80321bdb3920be2f35abcfe1efd6039ddfae9997525991f82c54c677
SHA512 548f2d3311cc5e2157581caf87827af45331563fceb9d907dd973dee255dc26408012d8d54fd7badb418d62df4f82370b1a303da3f5ab6486203f39777fce31a

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 cec89df6c51e2935d27bed383c7e502f
SHA1 f2e17c6286e59336db58297589d9236ff768aa8c
SHA256 abddde4522062920bf74456b3ea97884baedf4523a1b07ae12c56aaa659fabee
SHA512 0b988d9896dae466c2528544102028ed1042f53b9c17c58209f8c50503ff9edeb9fcc771afde3f935e6b8dd5e84295519c0b8896070061b28cdbd48a15b6de19

/data/user/0/com.houdatv.app/files/PersistedInstallation5910863278105520950tmp

MD5 6993d626abd546d580dfe9a28bb8736f
SHA1 cb4b77b04a0f104d0f9186008e4c6e9eb76d028a
SHA256 3719c86e13a7a2029f731ea410cb2d19c8025089b91dcd8cf4fb1d99f92240c7
SHA512 a76e88b9cb04a669824ef269f0e274b91cb87bb310228bbc8f6e399191d299df19ef9d0c09a0217ae213093a5b70223b4d4d362ef1d8e6e8e1094c5a654c8a4b

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 b5fc56f6a952966a4d13abd83d3cd2db
SHA1 67005281a462fd7f12a62296ee078ac33e499fc2
SHA256 816025da7ba7abf91e8bd0b7439013515ea7f812903a9c6a7221220e88b03568
SHA512 82d719ef758eb0a19e20e4b96558a231c2239c58b44cf1890be50f5770cfc85c383a3a597d1b314b955e5d889e39eee33305f2e8aaaac2f5a474d9e824f66a7b

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 055bcfb0ad0a21ca70529d82ca0a812a
SHA1 b4e5996458356526ac60be01d1dd36c32e876e5b
SHA256 3294589cdb22049aa6ee0dc3cd6457313c8d1bcff462faec3ba0e191c49a4c0f
SHA512 c89d3cfcaeb788b942ea8e1bdf611c00fee39a797b0d8f7d42af7e6cd66ada7aeaf86da17b80b4f4be216bc935181b38be792b18a4aa27c23e0812c8e063b9dd

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 1b9f16b1246b7f25ed2fb00d30c61f9b
SHA1 7be62f92a7c5ed115899cfd4cdad4da5d20a690d
SHA256 538148ea76a9d3be21ce21a67856eb06c480e2daa23ab4fb25a98ded651f321e
SHA512 9e03b13d4b60bf921114ef3b248ff83c8f5b0d56b362fe6bd01a7ee953ddbbb63fd34504796d0fab7f2df2a3bc462183c18fa8d541dec1097e8a3293c7943eef

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 78785ecf2fc353998dfd063d302689f0
SHA1 bfdeacb8c1bf02b2ecaf38eb10e0b224f3093afa
SHA256 30ce0d4b126760c93a1c6a96455d8da9690510e7370ddfc7135c77d498421b9c
SHA512 062ad43e514745460a7a308350121b17133094e668dcd0f6cec6bc2be6c449b6563951486b3b5b23408ca1fc8903e4d330dc8e45a6bcb02e52d34c778c6b7885

/data/user/0/com.houdatv.app/files/vinebre_ac.txt

MD5 35a4d19b17a03950f9f64d4e0792839f
SHA1 8fcab69d96ad983f5e23be35dd69682db1166dcb
SHA256 39a7a1c84907c901d4641067e8bd6d5f5cd36acdd36dc9997c2663e7696f7fe3
SHA512 82d7e743e3b0c77439cbe42853d2b1cf5b504ecc1e0caa04fcafe3b38b7c35489fa888db0633cf9f4170f60fc0ec2d230a9a21448bd9d539bb57b6b9fca0b1d8

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 6efe7877e65a0773500bfa024bd6893f
SHA1 f476f005c807cd1d1986302ee1fb05607e87289d
SHA256 56d55d35e335865dc6242941e45c14e266c0957456e119847bc7330e697fa92a
SHA512 d5af0fed6c14974ad7abb92697007f1b7d495dbcd6fd2dc681bada8ea8d3510a7278e150df2f1ff081818d024da4691c371f97079db3dbed8f5e476488214df4

/data/user/0/com.houdatv.app/files/splash

MD5 3be54e276c1ac41c4a0618f1df4e4ad4
SHA1 ba0c04e100e92a18a9d31c1da59d77e861d6055c
SHA256 be5d3cf6c8cddef930d412bc15d8af24ba654ca0961d6659b57ca7554866326e
SHA512 e1cf440871316ae3aa76e06821f49b06cc2429f4493317ba812a1cc52a335dbc7452815235cb5c625158c44dfccc5ce74de0543be7c6edac1a4bfc372639e30a

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 75430622a43555d46553fbb88893335c
SHA1 dd99b14798fe149b598cfd897f74d09e2b789f9f
SHA256 a2e2aafd8db8ab0f85c84e10b27abd126383e444068b4f33361f901622e92df1
SHA512 fd7f1793eeb0fe851da22285434f3c34c686893364867190b1cdd66a8ad801ca04ee374a5d0a05795c764dc371875d6d9abf4d068f6765da1985b13424ff7219

/data/user/0/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/user/0/com.houdatv.app/files/ico_share

MD5 9769e88e084bee48eac8c479b429a556
SHA1 8bd33f69407f65bdc02453562a356bb51f581f56
SHA256 003772e5bb3502eaad74c39dcc197ab9009d9c0f0b679487b83b8c55eacf2332
SHA512 d8164f54fbadfa95d785519c622cdf5d9affac22eff67acc352dcf00266bd5407e9e2fea01d158d59a1e71744a0b28609d75763489f7b4a13fd54a09f489ebb5