Malware Analysis Report

2025-01-19 06:55

Sample ID 240523-rz72aaef67
Target 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b.apk
SHA256 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b
Tags
discovery evasion persistence collection credential_access impact
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b

Threat Level: Likely malicious

The file 5cb1fdde075753692ebc51e12bd3e1b0617163c91cc817ee0c1195e93ad0e67b.apk was found to be: Likely malicious.

Malicious Activity Summary

discovery evasion persistence collection credential_access impact

Checks if the Android device is rooted.

Obtains sensitive information copied to the device clipboard

Checks CPU information

Queries the mobile country code (MCC)

Loads dropped Dex/Jar

Checks Android system properties for emulator presence.

Registers a broadcast receiver at runtime (usually for listening for system events)

Queries information about running processes on the device

Checks memory information

Checks known Qemu pipes.

Checks if the internet connection is available

Reads information about phone network operator.

Requests dangerous framework permissions

Declares services with permission to bind to the system

Acquires the wake lock

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-23 14:39

Signatures

Declares services with permission to bind to the system

Description Indicator Process Target
Required by remote views services to bind with the system. Allows apps to share and display views across different processes. android.permission.BIND_REMOTEVIEWS N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an app to post notifications. android.permission.POST_NOTIFICATIONS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-23 14:38

Reported

2024-05-23 14:43

Platform

android-x86-arm-20240514-en

Max time kernel

175s

Max time network

190s

Command Line

com.houdatv.app

Signatures

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Processes

com.houdatv.app

Network

Country Destination Domain Proto
GB 216.58.213.3:443 tcp
GB 142.250.200.14:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 172.217.169.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.11.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 configv2.unityads.unity3d.com udp
US 34.110.229.214:443 configv2.unityads.unity3d.com tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 89.187.167.7:443 html.e-droid.net tcp
US 1.1.1.1:53 webview.unityads.unity3d.com udp
GB 18.165.227.128:443 webview.unityads.unity3d.com tcp
US 1.1.1.1:53 www.mediafire.com udp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 1.1.1.1:53 www.osn.com udp
US 1.1.1.1:53 static.a-ads.com udp
US 1.1.1.1:53 www9.mediafire.com udp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
DE 213.239.209.209:443 static.a-ads.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
US 45.60.155.96:443 www.osn.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 1.1.1.1:53 shahid.mbc.net udp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
US 1.1.1.1:53 upload.wikimedia.org udp
US 1.1.1.1:53 www.elsafa-nwes.com udp
US 1.1.1.1:53 www.bein.com udp
NL 185.15.59.240:443 upload.wikimedia.org tcp
GB 13.224.132.20:443 www.bein.com tcp
GB 13.224.132.20:443 www.bein.com tcp
GB 13.224.132.20:443 www.bein.com tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
GB 13.224.132.20:443 www.bein.com tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
US 1.1.1.1:53 httpkafka.unityads.unity3d.com udp
US 35.244.205.3:443 httpkafka.unityads.unity3d.com tcp
US 1.1.1.1:53 auction-load.unityads.unity3d.com udp
US 34.49.168.197:443 auction-load.unityads.unity3d.com tcp
US 1.1.1.1:53 srv15.e-droid.net udp
DE 82.165.61.18:443 srv15.e-droid.net tcp

Files

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 ccf660f92cf37f65b1c6a7c521f3bb76
SHA1 d8173c886f77c425f60722be8782405671b52f7f
SHA256 9b0282ee6304ae9d3aa3fb5079d299ee0b627fe7b6f0ba2a5ea7f1d4774a38a8
SHA512 acc8033882ee9edf401cadf03d268a8704a851fbf7a983e8906b49469593464bd0032ec2bf3734c67ee049ef7c4ebfa16d42bbe6af2d011593bfce580d5d1f75

/data/data/com.houdatv.app/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 7c1dd75f8b1092e3717aad4b42500616
SHA1 057894453b7f58a5c215e9bfad7f14f1538425f4
SHA256 d89c91ffd55185cc943a3abb6af8906633722cd54bd31d2122ae7be84038a627
SHA512 a02296022142f4106516142a71b4d97104b4733fd6b1e9c9d17fa9f99c6923b918d64a227c017b49cd413b55f0521f5c9d3d412c4fd723190512c8e457057e81

/data/data/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 ca99c79b84906e5e0dab1cf8a3b5b54b
SHA1 f50b3a995168294a03d7924412185d83fb9f0cac
SHA256 87ef5c5e547e32c2b47be861c6f07b9d357c28055cdfbf1292f50a4acc1bb017
SHA512 65a220448c6ecd5aad9f395a81bd065f8c30b1c280b9bbc0d44a7b8ee823d1eda600e549a211426ab62a2f41be9f1a559a49e30dfdd32eeefa86a3e5de74bf1c

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 e3bcc41748a8b27de17127e83cb81ea0
SHA1 ac815f6e75a566609a0634ee1ecb5eea676cd216
SHA256 8840b1c03d292ed9dfbde86b2db9f7dae2de3fd9b79aee574bbd5c1a92a942f2
SHA512 c9bdd7ab9340e488f17c5c25ad161beeeaf722c686b8f1f878d5130717df0448920559e110c526cbfc4d0e7de80bd0daf1496c4f8ead981315b821584ceaf24e

/data/data/com.houdatv.app/files/PersistedInstallation2427063632179940164tmp

MD5 729ae4f4e3f38f425363b4b06bb5bbf3
SHA1 234fe9348df4ca1faf23931be9b01e3886258ed9
SHA256 a1dccd0c943cf957c894561f505d1ca788962c2cf2ac4a420cd90b9edd7bfc33
SHA512 db3d18a5111d3881d098a45d08dff6a14dc8e512b405cd621d318e3f55bda91e0b51fb90bd63af72f700a5ea36635b349ea4de77afada4616a31532e3a992e96

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 dafd21e8f03a5a90d4ce5db2404afc14
SHA1 ed63372fc326ab90a3692274cdc65d4976c75834
SHA256 db8c384222b78040463752f127f542577f819f5bddd944203f3ff44c6a16fc1a
SHA512 ec2e0969d1490c21419fdb29c01245dbe954cf2a5f6cb3cbbdb24437e5202fa8aee7b5e82f2791a1ef4cf44c22493ee8622b317ffd7736b43ae2bf64845873b5

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 04908cb056890a51ef489a14888bf215
SHA1 b571581347044e3dc638614c311ddb0625c9330e
SHA256 200000d3893bbce4c348816c035493dbd15ff7935abef43900c31b082db1eba1
SHA512 57d1744feae4d4535a1ab61ac6169638d479fefe7a6e0949d59b188898093f5844b1ac8119c7867501e33db2293d8a44f10494085166a4cf0adb06e8efb39eca

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 fd665e5eddb5965a2a7d083f631abfc0
SHA1 74b9bb85c4bb8e70b3bb9dd228884ed30887b7f2
SHA256 9d85e0db9b867b364b2f8fcd5adb1b79e629e9c4fd66a28fb5207585f098c9d5
SHA512 efd16bedada5ad8cbd9c14a4d0a19e41ad67afe7078a3362d217b95b7ee735239e731e13972b580a181da56281c344c2f0982504cd27c8bfe2cb62d9ffa9549c

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 b56b92ba16a98b849acfec64834b14c0
SHA1 a8ac733d2a560265d9f8f7d5cd4263495d177380
SHA256 87a9f2aeaba9396eee8a64a9ee26e74d279afdcef23c526e8bf1cbfd335132e1
SHA512 9e4a6772c2640ac63eb4d1a5c03af424f00fb86efc88fff73823847bb9368e1d0a105d654dcf32f382a16a617f819702e8ea2c8080dee8bfe87127888e4bd098

/data/data/com.houdatv.app/files/PersistedInstallation7538685772175474258tmp

MD5 a6cc74436b31e2bdd187ff39152aa542
SHA1 749250ff980eb796c80069fd58e658d9a5b33f36
SHA256 aed526f7089301c032483eb588fcf810c862f3425e0c8cbda6eb991f77300bce
SHA512 5f760aa6640e2ec36a8edaab0ffc511e798a7c465ca53e364a7f3223a0f313d2f03d1a722f7a5e2cf424019d006f9e4e8a7e0ac96a529d3c7d6130cc54fe7b76

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 4e6c3703a124bf5522fea9d18986444e
SHA1 5ee0bdbf177bdd4b84ec1300632d9700f3c85f09
SHA256 1216a1884d2a695c4c65d58bfe5b4187cb4946fe486b7849856b06216cb736bc
SHA512 5ae3c12ce947a461b157465befe19491cc3c8a5f34e6f9c6a09db26ed40ae7482a6d0aa59599b185ed8b5642866803730d8a306ddecd9e3612bca2982973a4f3

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 5ddfa537e62a5a72e014005df7422845
SHA1 0d79943f473c6a8a076925e6eaeb99e7a4e686d6
SHA256 256e9e1ac474fee763e98f10c01e966f482854bbeaa49c9d6d26f066805b9831
SHA512 ca090c499853c23ee4df4c737675b7a6a338d10acd7870164c2ca513028ffa9ef937ba58c80db58792ce1834c8a85b93f4a5417e842201439ab7e1ac9f170582

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 c5288f3a3a5fe1f62df7f9fad599beae
SHA1 d6aa092f94369f230d4d8526123d728c93eac6c8
SHA256 d4e16e31e193b418f8297a325025ec71e6071f3a3efc0312128eeffa25dd00b7
SHA512 c8e047830d437f14bf7731adc19ac5103331c5e9b95cd4455e4b9d4f64ceb62a39ad3b66210c59e027baa1a3daaa6abe2e702e959218c8ff437e1e7622a35297

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 157ffcaa130f957da2952751417ce870
SHA1 40c55de1c2a0b778fef66187b67223c7dbe2d72f
SHA256 9b6e5a53d2407ed32a0a077b919e99ea505fe368b43d6d72c9e12d1486656a5c
SHA512 1afac0e32d119b0f957b1816c6e84ebe92454ad5978faba0d2cd30671586c0ad990a4bf6006db347b6e53f2282bc150ee1c2d3ed5b27b2e09d488bb083f377af

/data/data/com.houdatv.app/files/vinebre_ac.txt

MD5 564b589be6b264645a2b80bce95f3f50
SHA1 143079cb715d4c520f7500004b3bec13c7977c0e
SHA256 724d7ed0367734848524eedf981b546db8b2a3ed1f80614e28f115dfedba285d
SHA512 aa23ba0111da780c11e2d29acc2bf7eb61c85dfd4912d09865517f7e8b1a2049172c661614411a3259d39565ad8811fd08d245cb5f544a022c8795b8a2cfdf9d

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 6447e1a136fd31a3603a7b4f33778625
SHA1 7a4e61316632ed2fb5b216941f76cf4e6f394eac
SHA256 647b2f3acf78f661fabb98061222f64646b10e85b33c46fe1c7b1d56286b9ca3
SHA512 949c1a2d0274ce139f4aaf407c14bac7a1b1d98f68c54875cc08b7f28d3d6eec575f597c9a66c86391d923228572d779c1fdc3e10d7a2e5370c8fefeaf6f4582

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 701d953f08f0985cdb5f879feba81cfc
SHA1 be26f4611c781c44df6d63a06b264f0909f8d26c
SHA256 b4fcffa8a9761838b3c5efafbefabdf76e77862a1f65934a84b589fa73efa99b
SHA512 1a35a09268c9c89cfe09ce9a70d43658b2b715c56ec2693157b5cf27334a888f9b7d3bba365ba350cca738f019db4fe142ee7e62ad029d6303a29c1e4a430fd0

/data/data/com.houdatv.app/files/splash

MD5 29617f24b987ee71e30d61b85b3ce724
SHA1 67933da59449bdf537e26790486acb0246ac1df8
SHA256 7ce78e46a0340f336b19b46c5ae401650bd9ef87073dc096b22d8f523c8e9ca3
SHA512 72eeb8bc60eb2ac8acfff9b54840e551177075eced4f685e24a3100e835510a629b3d6d1091a1b492b5fb0fce0beb2822f68bf4bbe4a75612bba0e16ffc1f732

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-wal

MD5 61b4535bfd2f51282a0c59177229cb2c
SHA1 4220e59baca5f00d83b5f1765e77264a27778e9e
SHA256 6c7e9cd24ceb863392a7d02c090f5574cd01ceed179487631582a49535a5d8bd
SHA512 c145354000a7ad04e33d06f4a0ad6a8e838dfc1335a71176171db517ee9b5c332b69c0782414d3a33f48fbcf3bdfb299bc4f7860a8962d3ec5a9d7f39a88b905

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 d0efc47ccc1b0d30b0530f1fb696baf0
SHA1 fe66d16beea26f9a485cb57b475dc88b6de0bd26
SHA256 4e4c27ff6098c9d35fafb87b383852b32f9542aab8ec6972242685a3ea42db18
SHA512 ea75e0d982c38d19da884da576c37c171056a1c23c0676800a94fb4708b7efc06a804f7b1223054287cc341bc575eb9b284788754bf53addaa4551ba40ad9d5a

/data/data/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/data/com.houdatv.app/files/ico_share

MD5 0eae458ed1d8d82ce5a8bc928b7cf2a5
SHA1 14cc1c11188c08019572784d5efc733f2b47bfd9
SHA256 129d1099fd8af34e7ab77b852bdbe981667a04db6ad01e455d0c7b5de894bbe0
SHA512 4629b7f2339bd71dd429b8e6fcd51ae1015d12a09e1e963ee4529b034b85739379321cf5315d48fbf34fe9b133ed5b36d8a3d4231aabffe3d3924f4a7ab48115

/data/data/com.houdatv.app/files/UnityAdsStorage-public-data.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

/data/data/com.houdatv.app/files/UnityAdsStorage-public-data.json

MD5 f73ee07932b7b63e73be0d7782ea4ea2
SHA1 30524fae095e9718e8e7a2b50a77c2a643fc9a73
SHA256 550f3668c1e4c3ddf6b3b86fc24a2efaa70e624b867364188e564f96268420c6
SHA512 63fecb92c91c6b764c4c40c7fcb9941ac15320c1c0f75221a21ceaf5ee877c504f617ed9b442764f881ddb6d11b2b99b709a10dfd41ea331aa3ce1ef251b9aca

/storage/emulated/0/Android/data/com.houdatv.app/cache/UnityAdsCache/UnityAdsTest.txt

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/data/com.houdatv.app/files/UnityAdsStorage-private-data.json

MD5 f3488873273dd1cb72cbf540c2ce03b9
SHA1 5c11e9d6d13e50a9330fa285f783ad017406a88e
SHA256 423e7fe26bd0347e0cdee2684b117f8db369b349ac22008057fa0ded1eeca905
SHA512 ea322a0aa0ab0c52f00452e7e85f586a5665cbbda69d12c6ff500c34fc8d826743c047cd9ac813ddd6744781d25a1e98eccbd554fe794a3c57fbf6078c128e3e

/storage/emulated/0/Android/data/com.houdatv.app/cache/UnityAdsCache/UnityAdsWebViewConfiguration.json

MD5 95e3d323037795953d2d6a66c94f0635
SHA1 dfe2064efe25488f91115ed68ca3f058e473a0fc
SHA256 a19ae80721335f62829f755251ccba29a08e4051eca0cce468c81543e7b83d9d
SHA512 c78a0f38e0aa235d68ee9bd62528c56930dc297ff348c56b9b0f1cd92a0dcba1983ae98ae353af5b7cc201cf12de6445736e31363951b5799a95ca3d25aed94e

/storage/emulated/0/Android/data/com.houdatv.app/cache/UnityAdsCache/UnityAdsWebApp.html

MD5 ede9194f4341fb714c12acf9c96f0b6f
SHA1 dc4b1e4ab2d61b40583d5507284d7c02e8d1e408
SHA256 10e52675a240bee5116258f99e8cad21a6bbc1b72516ab1154e3a683f487f5b2
SHA512 843951467356248abb5ce9c9ea501c8af9efcf4508106f53ca98eee14e4a69ed8bebd75cb2cc13155d93893deb720e57c0f93caef58c5d5450bf7ee7a58b3e13

/data/data/com.houdatv.app/files/UnityAdsStorage-private-data.json

MD5 6eda6ccfc60dd782277e05a15d172196
SHA1 bd6d80b62899152df3e93d207375b7561f80f25e
SHA256 ed14a219d441bdcae99fe5e49509135552c4b29dcd9b9714a60c0e98471e837a
SHA512 b55b6fc5ae9d36a238a6012958f5441ba543df83f2600fade16dfdf544e33daac9d4ff7aa3ba6e02b77faea339508f07d16e1844e5065a23bcdc18ca14e68f77

/data/data/com.houdatv.app/files/UnityAdsStorage-private-data.json

MD5 8c0d769eb481b63f860efade1249623a
SHA1 a761621f2476c9f8d97894dde70bd8de93e6f5f9
SHA256 1297abbd23f30385eaa57b80405aa1753fa88c1ee07eb6a6eede9bd9a8c80f30
SHA512 e566a5e09f4ce735cabf5104f0114246bbba6cec4bf5596207154453e72dac817884126f9b918bcac4720edf7ce0c2795664b1a9d5a4a9b602d7835e870410f4

/data/data/com.houdatv.app/files/UnityAdsStorage-private-data.json

MD5 7835541db5cb0ea69df9b4ff9368b383
SHA1 8fcd2baf2761cf1614d6b12a54534273bab006ab
SHA256 7ac72940028d02efce084fbcd7467938c681e78beaa4dd6e726947809f53d960
SHA512 06b0ad1ec55eca1fd131633092d366a1ed80970abf28768683d566fa8fca5b53583edc2dcbbe0726029c8f80ab43568c7b9b9de6cf5acaa2bb46e6c1ac04f5d2

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-23 14:38

Reported

2024-05-23 14:42

Platform

android-x64-20240514-en

Max time kernel

168s

Max time network

194s

Command Line

com.houdatv.app

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/failsafe/su N/A N/A
N/A /system/sd/xbin/su N/A N/A
N/A /system/xbin/su N/A N/A
N/A /data/local/su N/A N/A
N/A /data/local/bin/su N/A N/A
N/A /data/local/xbin/su N/A N/A
N/A /sbin/su N/A N/A
N/A /system/bin/su N/A N/A

Checks Android system properties for emulator presence.

evasion
Description Indicator Process Target
Accessed system property key: ro.product.name N/A N/A
Accessed system property key: ro.bootloader N/A N/A
Accessed system property key: ro.bootmode N/A N/A
Accessed system property key: ro.hardware N/A N/A
Accessed system property key: ro.product.device N/A N/A
Accessed system property key: ro.product.model N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks known Qemu pipes.

evasion
Description Indicator Process Target
N/A /dev/socket/qemud N/A N/A
N/A /dev/qemu_pipe N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /product/framework/com.google.android.maps.jar N/A N/A
N/A /product/framework/com.google.android.maps.jar N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Processes

com.houdatv.app

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.10:443 tcp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 172.217.169.14:443 tcp
GB 172.217.16.226:443 tcp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.10.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 adsmetadata.startappservice.com udp
SG 168.138.175.122:443 adsmetadata.startappservice.com tcp
US 1.1.1.1:53 infoevent.startappservice.com udp
SG 168.138.175.122:443 infoevent.startappservice.com tcp
US 1.1.1.1:53 info.startappservice.com udp
FR 68.232.34.193:443 info.startappservice.com tcp
FR 68.232.34.193:443 info.startappservice.com tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 89.187.167.9:443 html.e-droid.net tcp
US 1.1.1.1:53 www.mediafire.com udp
US 1.1.1.1:53 www9.mediafire.com udp
US 1.1.1.1:53 www.osn.com udp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 1.1.1.1:53 static.a-ads.com udp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 104.16.113.74:443 www9.mediafire.com tcp
US 45.60.155.96:443 www.osn.com tcp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
DE 136.243.11.250:443 static.a-ads.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 1.1.1.1:53 shahid.mbc.net udp
US 1.1.1.1:53 www.bein.com udp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 52.222.214.126:443 shahid.mbc.net tcp
DE 99.86.4.15:443 www.bein.com tcp
DE 99.86.4.15:443 www.bein.com tcp
DE 99.86.4.15:443 www.bein.com tcp
US 1.1.1.1:53 www.elsafa-nwes.com udp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
US 1.1.1.1:53 upload.wikimedia.org udp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
US 1.1.1.1:53 srv17.e-droid.net udp
DE 82.165.61.18:443 srv17.e-droid.net tcp

Files

/product/framework/com.google.android.maps.jar

MD5 4899aca36d1ed747a447dcac0d101a62
SHA1 32e43edc0bf3e036683ea8639472e6cd31ab9929
SHA256 67a651acd867e046fb4463b31ea584c1468f7243a9d1e2efd34059e8ee2f130f
SHA512 50b23dd279a9efba566c6a6523c7537723c0cd6dd3e4871f1cbdb8d5bc355caa3ddea99452b1c8e5356802f812b3768066a9848b93d715bb8bdfa455b704285f

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 4626504ba7a061843c53c823d4fe2ea6
SHA1 69cb64082119bab5ad0b41eece54237ecb519470
SHA256 69e7fe8166a61b7a2f10ae09a4daecb4ea2c872f13531495b1ac5527d7378db6
SHA512 d6788d03ed41ac213215d2510712350f0c8475db330b2a87121e8e037923f5f5a7cca9d4be1d6eaccd9c11ecc3ceb1bfcddc5e5bb612ee5bc147d5e2d5954811

/data/data/com.houdatv.app/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 18f8c006bb004b72e9a873a533591206
SHA1 c24f2d3f8a6430dc66c0c6e1c4c326d8b5907b00
SHA256 3cae6dfbe6f32055567500f3b8f91d9a2f82bd079dede13164625376029a9de0
SHA512 c9da61cd6674ee8d67782511b63ca64cd375d40ac6ef36e81512a07516ef256ca1d9310a75788fd6ffaef92d6d7bd4d75858252ca701033b0fc181b0401c1570

/data/data/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 aa9d7bb03c18c70411b1301046b31532
SHA1 99f5ff2ed98f03064bbfc21a99a065be98688809
SHA256 f387cda4677bbdc3fb91495328974cc38aa3e8afc197718334eb748669133a42
SHA512 8e50fc1e12947db5e71865b831b57bcdfff198ce5e1b7f8adcfdc1d005ba55b87d6663a56b33529c80ebdcf08cd566c6c0e81d03741d9afab553c7c5bdbb4f66

/data/data/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 49a331acd472bc2a2c117290952cdb50
SHA1 d67cee2017e6165daf4897be34a318f7daf6fc8e
SHA256 7b5ba91d0a1d14411c92d430641cfa037b131af6efa3645fd41c38381d0e5370
SHA512 6e95b8d59295335e3654f81afd00cf2022f77fc6e6e56c9171d2faf98960feecd2b4d10e2727c403db66d88a8da0579a029c411eb91cac981bb95170404a7e8e

/data/data/com.houdatv.app/files/PersistedInstallation4032101203308413599tmp

MD5 665c31f0d946828dc15a8eb0a411b675
SHA1 9438f44e0e3fb6b49c702485ec4980d041ac83a1
SHA256 93548d7c3f4b100cdc86bd5f6959501e33867cfaeeb14203c14a4d0b06b67d69
SHA512 982ae8a222acd44772a62f9b904f55a2630a583a1717a291471612aab496fd66925149f9ab1e33e14060caa25090ad32da0437d261e811bd7a6d1486feb214a6

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 c67927c62f156a060a3b076f53a7a5be
SHA1 e3fe87b547e131777318a7b61317244026cdfbd9
SHA256 b6359f6a83db8abf1990518712f811a16e7c20f1eaf0b7ddf35ac035200b3c85
SHA512 bec90aec772fd332a5a7a9bf109c057c7acb7d6d55b9635bdbc86279bcc7151700f533c8e9b44fe4788aca27e58f373bb253af3c3861aa37a24e4d085f3bae41

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 eb52a90bb70b76e946b62f50b6f7fb85
SHA1 42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA256 48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512 b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 15c07b847d9bdff59e47921e3b960f99
SHA1 51b6a638a6c9e54133fe4476e89841e8cfa838a7
SHA256 2c6f08153bea9557b7adff5f4ce35268e197eebbb1819d971e9ca390b424c58d
SHA512 a7784ab0393d7651553e46a2360b4105cf18d6174f3e84bc144078044fea2bf332b35df7bb3c87bc1e7daead4c445bd6b0d24d1a41cc86aca49737967d550432

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 90c073805ff29d9b60865517a376c524
SHA1 c43ab72e0c07c457ab980ec2c4df32f93017ba7e
SHA256 a7015ba9890cddcec19047b704d952a6a8d58b2069845673f3528a3acf4704fe
SHA512 363b365eb5a6f9c93d8cefc6a2ef16a17bbbcd9d993fb4316e28403026beb8ad294308a66dbd024b18fab0e23fa20e1c29c57f1368859d72ca647267d2b36c0d

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 daded95b2f4a33195b2a56acb1cf887c
SHA1 f001d8adf8f76a007b4596fedc0aad18b26cc9c8
SHA256 f5e0ebac371df3f0d4ed73ce61e3bf0c189c92232e108048580b41df9783233d
SHA512 0b9128697d41cdf8c62c84d541375fbc58fff4a8d9592c6fdf3f34a69c376e4cc3706c55f7a13e737ca09230392369cb512d50a197110875fa30549efd506076

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 67f6bc3461a1182c9f8450a178e6f66e
SHA1 ffeac1ab73f32c189e0670f4e2c91567d8c5c199
SHA256 9c87e2575a05556882c2c06a8b43a19278a91f555f51ffb9906b2aa3ef578326
SHA512 abdbaeab346dcc4d1b7f04d097d2cdf847e9fd3e85a526a97ed946449b8c5833c85b2d3e799bb5d8655b8d5cb983fff116400dbf0d5f581bff7cd73317446d8f

/data/data/com.houdatv.app/files/PersistedInstallation4881810308439618847tmp

MD5 4c76abbae489fcadc62bb777ba0aba27
SHA1 9e57c2715583aab564448605000628c7c93ad65d
SHA256 85048756fe1147a198dd5bd7aff495285ccea5c4d878035d3b909481d49e43f3
SHA512 cf39e521831fccf7032930d2bbf2915307409aadaddbabb60024c9aa9669a3add499e31a55fe52e128839b98663223fa6bf57dc156df7e20db1f3300d5831197

/data/data/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 96076bd105a571f027430416c4e654a0
SHA1 28be8ad6be42dabe66f01fa0830f1446ea5a3cc5
SHA256 ffbfa8e0518dd19bd5ddc1178cec005186f77ab483460215aad5cf556b86b7e6
SHA512 4dd2f5cacb984f37dfbd8fc2e110a1972b7cfb6d3d4e953ff1a73ab22635b43fe919c17809a11961ad04705ddca160bc8d06ed5d38f0f4eb9acbffc2139234c2

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 eba91dd4a45cf0dd40495493e0dcd476
SHA1 e1a7db4962d483c45f13bb543fa0f129f790ebd4
SHA256 6ebaad095d410223fd9bc9bac167fd84369ffc6461fb53f83be75e019d8f29bf
SHA512 8004f83a56878227a65b94bb6dbf56a265f20bc25c73c762f3ab0732a0d330a3ab1d577322f2b39706df0a41d89fb934a0eea0bdbfea16f5114cf5a480068928

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 e379d2096ec8c92fece8bf403c34d945
SHA1 1ea32d09b309b6932d29e1baa79bbc063ed90594
SHA256 56783507dc8918294f0d742e9f1beb8ad2a1eef64a0a83e177071410588150f0
SHA512 ad8c0a6c25edf19c3084c16ad940b412216e569b95e59c8c05b2bc96306fa5082046f1dc929ee752efaf4d03b044a4f53d35bdc5ff70818658c7a2966f0b306d

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 ba213042139577fe22d2edf480db637d
SHA1 6623e7836c99456ea1a93308e978b3bd7f052b6a
SHA256 4eafa98eec7ff48235581fdfce698faf9a69671b79aee277d698b5057b6e0b25
SHA512 d0674af247ddd3e62fefcd1fef60d63c3bebe0fb9cf8beca8c59bfef3f0164cfd9477bb291de1e9dad53b23d18f9167b0a77d45357984c2e53893b78628dc279

/data/data/com.houdatv.app/files/vinebre_ac.txt

MD5 cf764f188a3000cb51fcfec2e241c685
SHA1 30a3a92b68692c7beacc1495db172f7bfbff2ad5
SHA256 86278580799f8c0fe8909df636b6f4be0888b34118b25208a63054e962cb7c7c
SHA512 9d553e9cf658c8adf1cf37d6c36e4c371ccc5009e70c6f2ca441f4b01bd9a74f3244a0d2275b1044e068c82a14a6e0c2cb5895cb1948f3e09f2537a86bd679e1

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 88a5ae32648ea566b7979f0230db185f
SHA1 601386e6b477eb04b86bd883123b36e3f39b2bb1
SHA256 a8839781321d89646a2d3cc5c8b94ee4cf7ab1346f9d75b0312463e41bdb56a7
SHA512 63c52819befa5a3680e0363dd40865355b56022c22616e52a040bb1ad69a2095235aeb03b4be29d32e9c8e8e648a4d77a8eeb1fed7b76deecc1c742ffcc6634e

/data/data/com.houdatv.app/files/splash

MD5 3be54e276c1ac41c4a0618f1df4e4ad4
SHA1 ba0c04e100e92a18a9d31c1da59d77e861d6055c
SHA256 be5d3cf6c8cddef930d412bc15d8af24ba654ca0961d6659b57ca7554866326e
SHA512 e1cf440871316ae3aa76e06821f49b06cc2429f4493317ba812a1cc52a335dbc7452815235cb5c625158c44dfccc5ce74de0543be7c6edac1a4bfc372639e30a

/data/data/com.houdatv.app/databases/google_app_measurement_local.db

MD5 a252459de74ef0a0af13db00533afd5f
SHA1 18a5fe8923fe4aac03723c79259008738e734a3b
SHA256 c7c40b6ddc8fc53ef69abf5952e65070af074d2d146661432ca275ec815b5707
SHA512 da971ebac5b12ef2ad94666f53e664807e4b0e1e3bef480d94ebf6d63226b818ffc67c8c6650f9da9082a28cb8bd2889122d53fe1cdacb5b5589f8e2d736d4ec

/data/data/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/data/com.houdatv.app/files/ico_share

MD5 9769e88e084bee48eac8c479b429a556
SHA1 8bd33f69407f65bdc02453562a356bb51f581f56
SHA256 003772e5bb3502eaad74c39dcc197ab9009d9c0f0b679487b83b8c55eacf2332
SHA512 d8164f54fbadfa95d785519c622cdf5d9affac22eff67acc352dcf00266bd5407e9e2fea01d158d59a1e71744a0b28609d75763489f7b4a13fd54a09f489ebb5

/data/data/com.houdatv.app/files/shared_prefs_sdk_ad_prefs

MD5 987cb051364aa6bea7d04c511cc9c24e
SHA1 9af0868fd62c3a0b4e575e4e1a982e4e77a42f83
SHA256 442119e7d928fb4104db389d612cea7e759921dfab3054367414d3fe7e6392ca
SHA512 48a57fb0e3d08471df1ac3a2fac19e3a59bc1b487aee5281bc70e30952428022e2f3d032ad5775e56bf21264b9f0f874e719cd3a377a152675e7a8ef17c6c1b6

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 3720c7a8b89ee9054d4b677bc0fa738b
SHA1 c9d81d31315d95ba3c3c61c6bd6155e0db4c0b1a
SHA256 9dfc03cc697b80c327f346073fd9726ef8036909fbe4d20717988a9e93f15d35
SHA512 91eff58485de13718d784a8ea7d02c45419b6dad08050a84106de392e0dce27134b6e060ab4ba39fedcdacff09499c00bc2d227b2ab6294c83284b7564d6d074

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851

MD5 36566c66b260d1d98c063945b31fa3a3
SHA1 e1672922fefd447d714e2851efcb8d8511eff490
SHA256 96aca3a88940308ae2e042344e529cabcdd1e8cdad8f083282202741c13dcf26
SHA512 dcd5b18c2b7e0814fa2065a89044c34169ddee2f5f491dbc59b952d4208dcf83d65b7d94e587a1bfbd783a50b9e4637e637e710373774773d9e65af1200adeb8

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 6858b296a6f7357a0f7e57ffcc25c5f4
SHA1 e808d66c908094ba7a05c2bbbc4c9192e90ccf3b
SHA256 e7cca46a24f2614b02c01ac1e8c555dc0ea47523ef06d042931df7cab52b855f
SHA512 4ba9875ff76311b04fea6f7df3a790357f559d1255e50c18c3a390ad6139b4d076c6d574f58cb2a050dd0f62e9c636ed7a213bb14dbc203a4c9086ecd9799c9f

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 8776b76fd0afcde8fbeda306d0f87ffc
SHA1 31acb26dc495d26dff059389d16b554371e6eafb
SHA256 e3e18ae043fae6376ad4f0ee8a5936cbbce2913ccd64ca637e5ed4d3b3385714
SHA512 34b76435131bb970c99c0a31855d1d1b694e30e773945d43429d4e707f41e3525a1fcdabc486d9780443d50ab1c3f625425dc44992f4444666a02083e94e10e6

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 9cf155dd4cd837433b58f60066fc42b1
SHA1 51d734fd19da0f0b0d0eba01acb0e27d9d9ea021
SHA256 61815ca5994f7ceb9a73b244039c1557cb3b6af67c8eee009bcbfa2dbed83df5
SHA512 a004bc15cc36a74900f614947226bc67a41fb30f10c7549dd7a1709a2bdf5addd432b3c58c2ca0850068f430ad1ee18f2108a0b93245ef764e3043e7759126fb

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 2d8578ae1a0969a71fa39e3c6f1ac217
SHA1 e8b0d079aea24999c4d01c5f83d71c934b99efd8
SHA256 ae805282428a6e0e3336789b390abb6c62b044970608319f6ac2c28da251cf6f
SHA512 2e9f786ef71e89084545130838637b83c10098fee1e419c1646de6cc4457a29c527cc6a4dfaaadf02695c046b7c8988ed1170506674720b31effd6f203ccc72e

/data/data/com.houdatv.app/files/StartappAdsMetadata

MD5 8a723a0f878231e2dd5a1f6553d8d760
SHA1 b51cbf922133f526a707608712c097a59db5c3b5
SHA256 4838a425d1caca4f73a2a6fcb705d16e342ec8b503a697207a39091b16d4b4b7
SHA512 24aa98c1dfc0b671f65bc738bd33ac1b38966c7400f21e06d0e51e5a4754d823f4271f39616f77e4857d42832500d539d5ef6ab3e1e637448c31e93ed5a5eca6

/data/data/com.houdatv.app/files/StartappBannerMetadata

MD5 30d37a9e3c4e758d2314d47ecf43c930
SHA1 35cd5766ec858527bfe71f4b12b64b03d3c64731
SHA256 cf53c4c621e76ef87e511fc78bf74296849e46f4d11d2296e27748b5fc8493e1
SHA512 38b857c55c8fa9366f657dc1b37c7ea4df22c2d05fb68b5652c21561f07a8fc0e6c28d5a055e1698d46feb162ff3a4b1c4f044466ea7454b61234d5ef6d5db6f

/data/data/com.houdatv.app/files/StartappSplashMetadata

MD5 374a4667b0aafe77e52eb3b5f4493b67
SHA1 082e1792bc4b36a69bf688664246de8612a63d90
SHA256 651fda52854bd0f410418c7e414336c31a0e8ed8d07d2458b9dda283c5d28cee
SHA512 3372ce9d8b58be37e40ca893f08e3595838f12cecfe75d52de172a87ef85d1a99b6887f068ce0ee221f55378901580941b8a047ec1841342b4bc1b903bb0e9b8

/data/data/com.houdatv.app/files/StartappCacheMetadata

MD5 7e42a6d37f84dd8e1422afca1fca3e83
SHA1 2955117ba56391dba9374d8ecf97cb5d2587ee20
SHA256 e5a75ecdc34044b930a3d9b754ea2a1c416e51e5403aa38c19893b8b1808f462
SHA512 92231b00eea92ce8548527cb99e23ebf0261fe6c104c2657987545ed4010f69d8d951353792c7cd8eeafb8f7d413cecd23b15c22bc289ae48e8c574c57127bf2

/data/data/com.houdatv.app/files/StartappAdInfoMetadata

MD5 95186c16da704d61076467b0239ec117
SHA1 f318ba07dbe12eb4415d250e4a3fc3ea57634d28
SHA256 2b449606a3876df649eeb56f98db278fd7e68fd0eac6e58e35146b22ce1a5cae
SHA512 bf8a0961146a28f11791106563fd26b05aa4094f0450b14f447b89ddc5ff4dab6ff923da3bc6ab4f5c664a947366831a31c0c0511f0e47f563fbbaf33b1c2928

/data/data/com.houdatv.app/files/StartappMetadata

MD5 8709ec517fba3ac341113fcdf0532e5f
SHA1 10ee9b2d9ac765b507f9e5ac6b3942c06096513e
SHA256 ff0cb599a0be56015f4d2980f71277f21e0081d07e3ee29ff3d6e56b478b8475
SHA512 fca52afc98c8701c58d7ca482c5d9db32194ff7995f87f97b6c486773123856e2443a6dafa24671eaf4d50fa79866d10cb2402d5ae57e86e1f3f9d440c390f64

/data/data/com.houdatv.app/files/close_button.png

MD5 2d858e8af5d9426fe061df5c82ffa6ff
SHA1 bc1b2eab876aa221b6449d11e482de24b777d58f
SHA256 73d875bdb982c50c666e30ba2b8ae2dceecc63cd0d5f8a35158edfe5f3303835
SHA512 aabaa75856cfc07bf65f3f2dae118e357cba83a45f0a900aa625f576de47c2753b0a00fb1913e45c1d743acc0f6e0100a4a6a326f402b0f4664ba181ad670c0c

/data/data/com.houdatv.app/files/back_.png

MD5 ebc06fd3d86c27a426932a83325eeffb
SHA1 461c990e677114de3baba2a33f0a60c0a10bb9d2
SHA256 ada010f03b82133ccddb4ac69a7c81a1d507121ef1d276c7c191bb55401c2230
SHA512 3b3c682dc3876f7c813bff1a38e53e0c20f6c776eeb8362a8a750b81d0a3132a207b01740a493c61a03261748399e020aec5fcb7354c723e4f5703efe5418b2b

/data/data/com.houdatv.app/files/browser_icon_dark.png

MD5 cac9a26c27728066be7a285defc0df6c
SHA1 9931d42eea7663aaec4eb901bcf279b246c19e34
SHA256 9347cbd8e6e2af4d09759e55b7595474648619da07992d6485b9756ab4d8170d
SHA512 11a3abfc4558e6c887f1f809a3837ffe6f4c1702407db945319acacaa5e677f6b117c07ca676cda6438639a1ebc447a2993e0ff31be8ef797bd219700f508ba5

/data/data/com.houdatv.app/files/back_dark.png

MD5 355eb0af21063fefca005d93d6afa9c9
SHA1 f854e3d2f0c0470a54e55f31017f9c499bd3671d
SHA256 b50339f939827a8e5a918ee4ed1d8213e27f6d546a98313f90449b27a1ebc00d
SHA512 ffff59e303636383dccc1282dea4c13b8c46d9aea1d646d745f7d26607cfabc25aea8001af873942749129291abef5dc5a858e7360cbfc145f870b80689b34e9

/data/data/com.houdatv.app/files/forward_.png

MD5 9ee047a6801bec9459a9dd5ec7068078
SHA1 1aaaffc208e2d86e53fc031e8413169850e65746
SHA256 9f63f6c9ed9d33f235c30508df34c3358b55cac8bfb4967fc3e15afc61a6fd12
SHA512 8245818df5ffe06c8f369c8d77479f9f2163d10dac36b0e37c834018b713dc8b063ec1de1862fe16a8c1a769b496652be880ddd48d6fcd24ad766a395bc3ff24

/data/data/com.houdatv.app/files/forward_dark.png

MD5 12bfe20382337a84c0fc004a52b9ba9b
SHA1 ead15f7ef372c16f78060b8f8c5fc6e0ca6a96f9
SHA256 621fbcd864a7dceacffddb00a682148042732aeb675e22cd42b1a0937c6717a5
SHA512 7a346febc49154dd348be77f88c6e7ed5c7a531c2fed981f12c40e22a19e4e1a5c51fa766b3122898d97f05e1546a6f2a29b598b0ff441cc7de5e3c505aa33c4

/data/data/com.houdatv.app/files/empty_star.png

MD5 76ce13c6312eb334fd351e3b5cff4bf4
SHA1 203bd863b812c071ab3ae25bf4ab2f9c4d42942b
SHA256 f0a8e8d6b8bcb84e466f921dfb20a91fdd4e4b1777d9b0be6ad4d03d4a253af8
SHA512 d06ba34786090e3b027670a17910d2e35f48eb7bc639e6da1d08214534215797dadd1a56be44422b176801e5d1a1345cd2bf29e73acb6a49bc9a2f7670710783

/data/data/com.houdatv.app/files/x_dark.png

MD5 1b759349f0bf3e55c51e2a2c2802b3cf
SHA1 5a608a093fa5f513d1ba52e8a9e01f693c47da98
SHA256 59d83bb6ebc5394c048273ea9e1516a2bc7a6f80212d53f81ee44cb1f9b65443
SHA512 3b39d22d0f8368dac2e36884b0316c5aba24180f51cb3a993fdefcdcfd5a36823d6c02c75863cd5a3bc0808223dcadf9934d548c433332bb9528f0eb8cecc0a6

/data/data/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 67d6bb38418464a352969f5ab7bc9e39
SHA1 fb9a4429dcd1b61e0e0ebbf9223627abb02d60a1
SHA256 d44e63ff89afbb9cb073ebf05ee0394c327373dac5abd202bead3ce3ead55483
SHA512 fc6c70455adbf4494c9ecb10e145f24ea682fe63d2d99f84b6ee2a9e44c7350a1bc93858b75ee7a1dd67abff98485bf9a031edd8a65f75e1c6cb38ca8c801eb0

/data/data/com.houdatv.app/files/filled_star.png

MD5 317f802aacfab6282b8f74f280e841c1
SHA1 3b746a76f6322e97fd6c09a43d03ac14631d93e1
SHA256 f37f9a17c20ca3068f4f9db08c262c62b7b86544532f612a78421bdee92f4196
SHA512 a714f902ede615507cef840dcc03a5eca183c21c82cc419a924587f38b6974f5aa45fcfcc2bac4d6cf82b81d1b6ad452540e0581751bfcad72e524c83757a301

/data/data/com.houdatv.app/files/half_star.png

MD5 a40e6a567b7aef329bda0ac200f7a23d
SHA1 2fa463649c7ba586b28670675a15e0d7a630c7e0
SHA256 ee0933e12dd4e302b1e18572d22f48861e8125e5d0201603e024d18ef5e38556
SHA512 5e77ca21445a09aa903ca08c10c1bcaf769d8273368b7981aacf1bbab08cefb7a521687e78d280828f46b625c99fde02050f5c914dd4d07fd742723f7713ee4f

/data/data/com.houdatv.app/files/logo.png

MD5 45c24a8686a0978086c99f7039accc17
SHA1 c63ae2601322045390c7a4f230602b74ae18d2d8
SHA256 bc9c4aa36a0dd7efe16a8b3bca9172d970fd13d70d3e718aad17a78269079912
SHA512 d5861c64b9dc9139904c3bfc7da26fa6f3d9676a5b4203ad617c661d54d3716508fb02f282f5c204bf9d6a0c7162bbb565a44f2ceb96d825177065818b797727

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-23 14:38

Reported

2024-05-23 14:42

Platform

android-x64-arm64-20240514-en

Max time kernel

174s

Max time network

179s

Command Line

com.houdatv.app

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/failsafe/su N/A N/A
N/A /system/sd/xbin/su N/A N/A
N/A /system/xbin/su N/A N/A
N/A /data/local/su N/A N/A
N/A /data/local/bin/su N/A N/A
N/A /data/local/xbin/su N/A N/A
N/A /sbin/su N/A N/A
N/A /system/bin/su N/A N/A

Checks Android system properties for emulator presence.

evasion
Description Indicator Process Target
Accessed system property key: ro.bootloader N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks known Qemu pipes.

evasion
Description Indicator Process Target
N/A /dev/socket/qemud N/A N/A
N/A /dev/qemu_pipe N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Processes

com.houdatv.app

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.178.14:443 tcp
GB 142.250.178.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 142.250.200.40:443 ssl.google-analytics.com tcp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp
US 1.1.1.1:53 imgs1.e-droid2.net udp
US 104.18.11.56:443 imgs1.e-droid2.net tcp
US 1.1.1.1:53 srv16.e-droid.net udp
DE 82.165.61.18:443 srv16.e-droid.net tcp
US 1.1.1.1:53 adsmetadata.startappservice.com udp
SG 168.138.175.122:443 adsmetadata.startappservice.com tcp
US 1.1.1.1:53 infoevent.startappservice.com udp
SG 168.138.188.189:443 infoevent.startappservice.com tcp
US 1.1.1.1:53 info.startappservice.com udp
FR 68.232.34.193:443 info.startappservice.com tcp
FR 68.232.34.193:443 info.startappservice.com tcp
US 1.1.1.1:53 html.e-droid.net udp
GB 89.187.167.7:443 html.e-droid.net tcp
US 1.1.1.1:53 static.a-ads.com udp
US 1.1.1.1:53 www9.mediafire.com udp
US 1.1.1.1:53 cdn.wrestletalk.com udp
US 1.1.1.1:53 www.osn.com udp
US 1.1.1.1:53 www.mediafire.com udp
DE 144.76.38.164:443 static.a-ads.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 104.16.113.74:443 www.mediafire.com tcp
US 45.60.155.96:443 www.osn.com tcp
GB 143.244.38.136:443 cdn.wrestletalk.com tcp
US 1.1.1.1:53 assets.bein.com udp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 13.107.246.64:443 assets.bein.com tcp
US 1.1.1.1:53 shahid.mbc.net udp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
GB 18.165.201.7:443 shahid.mbc.net tcp
US 1.1.1.1:53 www.bein.com udp
US 1.1.1.1:53 www.elsafa-nwes.com udp
US 1.1.1.1:53 upload.wikimedia.org udp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
GB 13.224.132.19:443 www.bein.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
FI 65.109.97.140:443 www.elsafa-nwes.com tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp

Files

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-journal

MD5 778626532cc5af4f0ed84db56fc020ad
SHA1 05e1c612812ed7fc77f65c86392f5c4ebe7438dc
SHA256 e0bff4fa1b0d56f1cc129c64155142713ab1e994ff555fda44efea0fa22716f3
SHA512 0d9acdecd0780b2a2c77cf05caa29a87fea2b2503abec1e383d23ca5a1f955458f6354b1376fd68c4a37b961b859afdf41a8b6df09b50816ffafe803ef991f0e

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb

MD5 7e858c4054eb00fcddc653a04e5cd1c6
SHA1 2e056bf31a8d78df136f02a62afeeca77f4faccf
SHA256 9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512 d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 5a3c31223c389ac15cc0f2b243ef3f80
SHA1 e5fd3efed90dc301ba663cc218288cd5cefc53d1
SHA256 0a16cb017e5ad7ddca52fe15c4dad13deb97ad573f24bef8343a25ed448b3aa4
SHA512 de230e66629e1f64689fd3ea4b13ea13d01edc84d128b86e1f091e447b669bc7106312f1bd2b204e32b8128635bcae3ad421b063289e802010d788633b329829

/data/user/0/com.houdatv.app/no_backup/com.google.InstanceId.properties

MD5 341f318c7a57a956b883e561497e96b4
SHA1 28b4ebf634e42871eeb6c0f0b6b4ca77a01eb4c2
SHA256 a344fca8da9fde871a9fe8f570f971bab10966c872fe05daaaca46431569a36e
SHA512 bddbb5e01c59dffc20ae800aacfc42ff8c17eb65a4e6f85690249e40f55c85e8e901ad6835b3da020a25a2d6bc7b973eee21d792b7bdfb47b02fa75c3cd75287

/data/user/0/com.houdatv.app/no_backup/androidx.work.workdb-wal

MD5 86e213c8ffb04ee5421740ab6e64c958
SHA1 01729799a877959a618f221457ea06539bed5657
SHA256 5900fe84fd0db0fd978ca6450c41013d81d05679131a3708a4e544424d3536e1
SHA512 dd7a6951b8d2d92bc7f3de9c705ece8d6ff382bc9e95e08199114873cb583e3841d6d7e4bed4a42c9a3227fe11c69eee8dbaea1616c8722c5f90c218f5a0d592

/data/user/0/com.houdatv.app/files/PersistedInstallation4807247800873469638tmp

MD5 93f87beb211e3a28d30312d72b428c2d
SHA1 0d711a7055b801f0a5736e0da68e0112b3f82f41
SHA256 e13f58eb54f50e868a87eb43fcb507a54590e2026764dffe1c73346a2afeed83
SHA512 e25dc13c71f4fade1851f7ab494c82aa3ce07110f2f1a3938d55b23f5638cbbcceb7f29aa4d4de62fa4d423f24d2f4e5ba25bde7a5795307a69e27bed4ea8851

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 10160500ba3b58a2def7eea7e0a0f8d2
SHA1 c36237dbf448074b85bf686609c926d781743dad
SHA256 4479fb400f8db75334210828a53e0bb8a62f46d43c281f61c7df86b13824c9f5
SHA512 107a5475769db731e4a34c07f02bf4cf32d70b7f5dd480bafad5573faa374dc6df18adc0b4b435ba4dbfaee19dc86bfdd09744315aeb5c5506c92f63d9e02495

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA1 07ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA256 2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512 442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 342d421eb214416f66e7dfb1a0eb2c60
SHA1 9b5fc10d3cd73b21be17384c410cbb9d09e1b867
SHA256 2487a7ca1b16a89458e143a72f5cc7063972a1b383ff95d72818ed4ee19be8cb
SHA512 afba3ad741617041ee6a840fceb57ed2974b7eee295c0474f3d5a3989de71f374366d6112d22b74b8f10bbaabbddd792788be8bf4091eccf8458a6783ccbe48a

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 86944de4d80a501602e68fab0b660cf0
SHA1 259ca11de4b6d763390c58be8fa7c511f862b929
SHA256 9ad75b8d977499e5c84338ca74fec0f05a99a935b07b254bcfcd7c47944d434d
SHA512 109f49ea3dfa66ff1bfd52c099e6708579a398a6720b898421a5482df45b099c136c7f82aabad1b62002031f0dccb02b26b9c6a0fbdda4e7f8dd361e7f5b3a6c

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 eed8042fafc6c367e5cd451d7031f0d9
SHA1 a21bda142f98efd4bd12ccfe964802ac6264fb08
SHA256 3b66e2b9bda949547e7b023596aa09eb550abc4fd77e63ab93105e457d10d79b
SHA512 a03ea1b8feb2fa9f22baf2e3f40070ab249b06f6b277ea6a7113b4d79b72335ff85f542e0538c02b901e5fbbc58a158c51ab2130552fedd4145929230de26a09

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 eadd208b0c080f42190234863c9b324b
SHA1 d5a4fdabb744fa9e00aef06f896049e110417e02
SHA256 799f052fd409ec0cb60a2e27449d41de716656881cd821790b37ab9ffd2580f8
SHA512 aa6f8012e1e0ef51b49d2fe9226b8ef57378243980c02fddbf6fd98e0f7b8aa0e6a8633c1399409dc9edb59cd37ab7e963905a72446ccc6d9b4f63e8d4fe1939

/data/user/0/com.houdatv.app/files/PersistedInstallation4406138774380224476tmp

MD5 4e87e7a8a10d1131d16186de85b64973
SHA1 fdd2932f61f0108ca7acf1db83732cd2c4e2dace
SHA256 3b837bf9e9ea2f7c17b075557648d419b840d273decfc82d9850f56a75c26b99
SHA512 20151a357065d04979973bdc58e7321be47bcf30e66eb86909ac0cb2ef98ef2a4c88e2207f6ff75e59798c17c6e351387299c100c2ecf647a4d6732718eb3243

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db-journal

MD5 a24063343a25cebbc499c6c408fee2fa
SHA1 0e7ca73794ccba9738d85b769857132de5823960
SHA256 d218260ed4b166d4bc11b815ad6c7816feb992a256b1fc0081232691d2f99030
SHA512 8d6aea0fd1402b98cceb7f8cdd135ce26c66b36f66304e171803eae0ff3e67909185b0b4ffed657a8ac70231b7703c725708e2af8fb6f38356167cfd9db5c230

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 798a16b49e4389f5d2c1ac9802e3f14b
SHA1 b104b20e078a1de404bc82f303b970a1311ee42d
SHA256 6c7fb12b049f018803496726e4258dd3dcd71aeab625dd1c7b281d1ec528d9ce
SHA512 844f579650108fcf8e12fe085ef17a3f1564ea2c956ef73ace12050fb8b3c25110787627036723158081f0f5dd432ba06543d90be2aa83b43c1bf5cf07f1b739

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 2f4d271874062494c2aa4549f7161560
SHA1 bf06fe53476dcc82eb1ad5dbc96df66cede2927e
SHA256 913eac47225288b68786a2cb03279422af689d983246b4520d6e4d07dd60180b
SHA512 4a39f15fb0adb93d949138f33ce69304a78ab0c9f4073cc0d625cfe1578ad88f33a32e167e2efed76c3d601d78d02ef5684514826e05e3045d079a911114922b

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 5103e1b1eae957e2b059b0d1a4d817f8
SHA1 db5218bae1011fff1b94469762cb7dbd00582098
SHA256 1a5ac3e8044b5b3d643b92db3a63d1c9afad0e33f0415a817280c1eaefd076dc
SHA512 0fef261fd93b3f2a6da00d15a70798316d38bbae12977b3a80bb70a8f81d071729a1cfc9ef92b7dcdd24cd5bbcd112aeef0dca831792f119213041eb92e9b794

/data/user/0/com.houdatv.app/files/vinebre_ac.txt

MD5 1cf92511c046766a03d3dc07aa3b4b53
SHA1 56222bbcdc4aa78ca7efbf65948394ee01f8287d
SHA256 d2edd47eb3ca22f4985b1a108ae1bd0ded4cf248f504197d03b5390f59651fef
SHA512 8388cd323bcca26ce44aaea808b22c57dd848bc39bea3ddb3fd8e74e0119fa55b68066fb9be237f3d963e589e7cb829aab5d7018bd8820e30390de4a747f71e3

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 42ddfa2926c0d84d0d474a93b1c1c24f
SHA1 9721066c2c4de150db402256b59ad1bb204e6662
SHA256 9ab57f7b1b3553136953185142552a1662907bebcd53a966486e3d21b5d98d55
SHA512 073076f120401d41ca4a504ef8a3790627a853ee669305c85bcb20655e00792fd76128beb98ea74d091d12cabd3db25934a14479effd547c2a47b2de9b2a01f0

/data/user/0/com.houdatv.app/files/splash

MD5 3be54e276c1ac41c4a0618f1df4e4ad4
SHA1 ba0c04e100e92a18a9d31c1da59d77e861d6055c
SHA256 be5d3cf6c8cddef930d412bc15d8af24ba654ca0961d6659b57ca7554866326e
SHA512 e1cf440871316ae3aa76e06821f49b06cc2429f4493317ba812a1cc52a335dbc7452815235cb5c625158c44dfccc5ce74de0543be7c6edac1a4bfc372639e30a

/data/user/0/com.houdatv.app/databases/google_app_measurement_local.db

MD5 4cf2f3580172f2bc8efc1152791753de
SHA1 8638257c4dc7748dca096ecae04577897af93f31
SHA256 06b446ef52b62861c0eb261be2205753921f6d180332d751c99662600044f39e
SHA512 02e1b638437ee500a7c03f879f2052f6edbf3724d23f51130ae4c8ea82f27dd40eaa5d1ac63c8da3446769776f5e3a6c1886764c77d4e74845b8b67401be2fdd

/data/user/0/com.houdatv.app/files/font

MD5 62027b7aa5859e5ecdf9a09a5ee7cdac
SHA1 91e36b6ef56ff61b29ddc8ff9a57ee1b0cb84cd2
SHA256 33413ebb0ff003b260a3ed3f9c6c327c0ca5f15b89a04fea1dfc73ce8e306952
SHA512 e8a09e9fb32db04a5a3b58bd47f8eafefa5e0dfb1cf9289f6bc0fe543337b13676f5700dcfb86fe277fba4179fc2febb34825b471c735ab357330eee8d642731

/data/user/0/com.houdatv.app/files/ico_share

MD5 9769e88e084bee48eac8c479b429a556
SHA1 8bd33f69407f65bdc02453562a356bb51f581f56
SHA256 003772e5bb3502eaad74c39dcc197ab9009d9c0f0b679487b83b8c55eacf2332
SHA512 d8164f54fbadfa95d785519c622cdf5d9affac22eff67acc352dcf00266bd5407e9e2fea01d158d59a1e71744a0b28609d75763489f7b4a13fd54a09f489ebb5

/data/user/0/com.houdatv.app/files/shared_prefs_sdk_ad_prefs

MD5 987cb051364aa6bea7d04c511cc9c24e
SHA1 9af0868fd62c3a0b4e575e4e1a982e4e77a42f83
SHA256 442119e7d928fb4104db389d612cea7e759921dfab3054367414d3fe7e6392ca
SHA512 48a57fb0e3d08471df1ac3a2fac19e3a59bc1b487aee5281bc70e30952428022e2f3d032ad5775e56bf21264b9f0f874e719cd3a377a152675e7a8ef17c6c1b6

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 b830f62fc4aeb03b08897199a0cf7173
SHA1 638648dfad4a7954400ff700447034a82485e41d
SHA256 68dfc2f2ac92cb6e3637e793ba1de30feb5c40b3a7e1eae9f0a750d49980c8fe
SHA512 0e16b0261ca7c0395021ee8670ff2d289cfa3d5b404865035c1c31717a293181c10b815f275ffb481e87cc3a672eb3bb292db6caf83885a42ecdfa241eafc3e7

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851

MD5 80a58e03c1649b46b9c4046bba974d49
SHA1 2584f0a6535dca225b930d5acaf60bfb770f39fc
SHA256 9a200de46869b4b2e794da9a008b4145895d3106d0c20fce1eb2278d9c509e8d
SHA512 0c75455521d694e1dad29adce42c8fdbd2f59586f3785a60d2d9203552913703b6ef668ce7199351d0a39dba9a5cb610bc1bc32c3e2f840e3b8db6cb1935356f

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 08b9fb7d61d357762c31254bf1567652
SHA1 88f9268a51bc226ab7c7731a6bab7bab2a5d161e
SHA256 9ed15d7ce42b8d2d616b8c4e3d32a3019a71bcfe9d44c858f35ed1adef3f42d4
SHA512 4e1c3d2d18485fdceb7c099ee21db07453ffd87267a4bb948f93526d8c2685078a64322f89fe4a098c2e98c6237228c9609b6f7fe55d7e1f3d297c6838b019ae

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 eb34b607194fd58e0683930d2adbd93a
SHA1 a94b75b90b3617c54de6e602f0039db44dd58f69
SHA256 ed0f4f0389ef6c18a0dd921b092069924fa13359923cf8bf4750af3e4ea9d174
SHA512 84930c0500b6afc0be1d931c6b86cf065657ecca4190591ddcbff6384802a78b7cd9b6f389d9dc1e38a57f25a0b811b4eb5349b0d8bb1cc28a0d63fde64ca620

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 c29f8338fae1f50ec5890324c1563d42
SHA1 f076ed2eb52e508fd1dc29acd6d3f56609979c6e
SHA256 c7899633c4bf649edf8acc755b582c12b43981610b8bc2fe2f8e1455a57634ce
SHA512 21cae6b17826b91e062b1d5384a5c1533934520139211490cd2aff378f3ed436bacdf5d4322f0714d3f13e4b188d306d3fb6d14cc1cc45632915a555b4cc9c8d

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 6a714993a426c597a8406854a5b4107c
SHA1 0af0b75ff2b5deedff3fc579bab53dcd1c80b5a5
SHA256 c98756225de48e97520b9e2fcbd47bb2e5924db13ab278fb6e748aa968f318a9
SHA512 314d46b7ae88dd3ca9772ddeb84b0bddc540bdfcf9efd38dcce8bd4eadb51d743311b00cb6d92cac479583ad41c16c40faae7608112af88c0eaec12ea1a343b5

/data/user/0/com.houdatv.app/databases/StartApp-d6864f2502af7851-journal

MD5 9196a0358aa87580379498673a604abb
SHA1 a1447c794577687571bd34759a5d1a307c8672e8
SHA256 de9d3a166d7bd9c36fc1cf3916c74d6e74d8f3eb61bdf33f9cc4b5de76de8430
SHA512 74ebc63cdd0228bbcbd054e921d7a4b9be604268ae93e7ec39affcc3f7a1de8df460f9f4fd5b7b092b1d99c6fa6d2d0d8e933d54c1e150be29ca8c2735ee6125

/data/user/0/com.houdatv.app/files/StartappAdsMetadata

MD5 8a723a0f878231e2dd5a1f6553d8d760
SHA1 b51cbf922133f526a707608712c097a59db5c3b5
SHA256 4838a425d1caca4f73a2a6fcb705d16e342ec8b503a697207a39091b16d4b4b7
SHA512 24aa98c1dfc0b671f65bc738bd33ac1b38966c7400f21e06d0e51e5a4754d823f4271f39616f77e4857d42832500d539d5ef6ab3e1e637448c31e93ed5a5eca6

/data/user/0/com.houdatv.app/files/StartappBannerMetadata

MD5 30d37a9e3c4e758d2314d47ecf43c930
SHA1 35cd5766ec858527bfe71f4b12b64b03d3c64731
SHA256 cf53c4c621e76ef87e511fc78bf74296849e46f4d11d2296e27748b5fc8493e1
SHA512 38b857c55c8fa9366f657dc1b37c7ea4df22c2d05fb68b5652c21561f07a8fc0e6c28d5a055e1698d46feb162ff3a4b1c4f044466ea7454b61234d5ef6d5db6f

/data/user/0/com.houdatv.app/files/StartappSplashMetadata

MD5 374a4667b0aafe77e52eb3b5f4493b67
SHA1 082e1792bc4b36a69bf688664246de8612a63d90
SHA256 651fda52854bd0f410418c7e414336c31a0e8ed8d07d2458b9dda283c5d28cee
SHA512 3372ce9d8b58be37e40ca893f08e3595838f12cecfe75d52de172a87ef85d1a99b6887f068ce0ee221f55378901580941b8a047ec1841342b4bc1b903bb0e9b8

/data/user/0/com.houdatv.app/files/StartappCacheMetadata

MD5 7e42a6d37f84dd8e1422afca1fca3e83
SHA1 2955117ba56391dba9374d8ecf97cb5d2587ee20
SHA256 e5a75ecdc34044b930a3d9b754ea2a1c416e51e5403aa38c19893b8b1808f462
SHA512 92231b00eea92ce8548527cb99e23ebf0261fe6c104c2657987545ed4010f69d8d951353792c7cd8eeafb8f7d413cecd23b15c22bc289ae48e8c574c57127bf2

/data/user/0/com.houdatv.app/files/StartappAdInfoMetadata

MD5 e932bc221d514f885a293ab3d214b605
SHA1 c1bb1029f9f4a83e011656d20f325a4d599a4e38
SHA256 11c50b12574a69b03b45cb5481c6cdf5447f01750ff66cc99a410536aeff8633
SHA512 daab2e29f4334c223e31d1470b43a6c250fa4749b5b32fa50b02a3c063408fcf73ef0084fc633c0bdd137c403e1777d72de402f797a4cf8b78b8d0cf3e0c537e

/data/user/0/com.houdatv.app/files/StartappMetadata

MD5 601968c04b924e6ece6f8f47d6625e40
SHA1 5f552fc1d363e58fc03820f78b6500f3e2b0b4de
SHA256 0d3f43a09675608cf36afba8d1bc08a4482a576d888150fcc58f955f44d398a8
SHA512 34a48c53f0803b8c8762f5959fd6c4c61a4f5bd2f15cbf56349816ec94303558b424c99540171fad55a6d7dc33c34644c5e5dc2ba69f829bca996a2edca0bc30

/data/user/0/com.houdatv.app/files/back_.png

MD5 ebc06fd3d86c27a426932a83325eeffb
SHA1 461c990e677114de3baba2a33f0a60c0a10bb9d2
SHA256 ada010f03b82133ccddb4ac69a7c81a1d507121ef1d276c7c191bb55401c2230
SHA512 3b3c682dc3876f7c813bff1a38e53e0c20f6c776eeb8362a8a750b81d0a3132a207b01740a493c61a03261748399e020aec5fcb7354c723e4f5703efe5418b2b

/data/user/0/com.houdatv.app/files/close_button.png

MD5 2d858e8af5d9426fe061df5c82ffa6ff
SHA1 bc1b2eab876aa221b6449d11e482de24b777d58f
SHA256 73d875bdb982c50c666e30ba2b8ae2dceecc63cd0d5f8a35158edfe5f3303835
SHA512 aabaa75856cfc07bf65f3f2dae118e357cba83a45f0a900aa625f576de47c2753b0a00fb1913e45c1d743acc0f6e0100a4a6a326f402b0f4664ba181ad670c0c

/data/user/0/com.houdatv.app/files/back_dark.png

MD5 355eb0af21063fefca005d93d6afa9c9
SHA1 f854e3d2f0c0470a54e55f31017f9c499bd3671d
SHA256 b50339f939827a8e5a918ee4ed1d8213e27f6d546a98313f90449b27a1ebc00d
SHA512 ffff59e303636383dccc1282dea4c13b8c46d9aea1d646d745f7d26607cfabc25aea8001af873942749129291abef5dc5a858e7360cbfc145f870b80689b34e9

/data/user/0/com.houdatv.app/files/browser_icon_dark.png

MD5 cac9a26c27728066be7a285defc0df6c
SHA1 9931d42eea7663aaec4eb901bcf279b246c19e34
SHA256 9347cbd8e6e2af4d09759e55b7595474648619da07992d6485b9756ab4d8170d
SHA512 11a3abfc4558e6c887f1f809a3837ffe6f4c1702407db945319acacaa5e677f6b117c07ca676cda6438639a1ebc447a2993e0ff31be8ef797bd219700f508ba5

/data/user/0/com.houdatv.app/files/forward_.png

MD5 9ee047a6801bec9459a9dd5ec7068078
SHA1 1aaaffc208e2d86e53fc031e8413169850e65746
SHA256 9f63f6c9ed9d33f235c30508df34c3358b55cac8bfb4967fc3e15afc61a6fd12
SHA512 8245818df5ffe06c8f369c8d77479f9f2163d10dac36b0e37c834018b713dc8b063ec1de1862fe16a8c1a769b496652be880ddd48d6fcd24ad766a395bc3ff24

/data/user/0/com.houdatv.app/files/forward_dark.png

MD5 12bfe20382337a84c0fc004a52b9ba9b
SHA1 ead15f7ef372c16f78060b8f8c5fc6e0ca6a96f9
SHA256 621fbcd864a7dceacffddb00a682148042732aeb675e22cd42b1a0937c6717a5
SHA512 7a346febc49154dd348be77f88c6e7ed5c7a531c2fed981f12c40e22a19e4e1a5c51fa766b3122898d97f05e1546a6f2a29b598b0ff441cc7de5e3c505aa33c4

/data/user/0/com.houdatv.app/files/x_dark.png

MD5 1b759349f0bf3e55c51e2a2c2802b3cf
SHA1 5a608a093fa5f513d1ba52e8a9e01f693c47da98
SHA256 59d83bb6ebc5394c048273ea9e1516a2bc7a6f80212d53f81ee44cb1f9b65443
SHA512 3b39d22d0f8368dac2e36884b0316c5aba24180f51cb3a993fdefcdcfd5a36823d6c02c75863cd5a3bc0808223dcadf9934d548c433332bb9528f0eb8cecc0a6

/data/user/0/com.houdatv.app/files/empty_star.png

MD5 76ce13c6312eb334fd351e3b5cff4bf4
SHA1 203bd863b812c071ab3ae25bf4ab2f9c4d42942b
SHA256 f0a8e8d6b8bcb84e466f921dfb20a91fdd4e4b1777d9b0be6ad4d03d4a253af8
SHA512 d06ba34786090e3b027670a17910d2e35f48eb7bc639e6da1d08214534215797dadd1a56be44422b176801e5d1a1345cd2bf29e73acb6a49bc9a2f7670710783

/data/user/0/com.houdatv.app/files/filled_star.png

MD5 317f802aacfab6282b8f74f280e841c1
SHA1 3b746a76f6322e97fd6c09a43d03ac14631d93e1
SHA256 f37f9a17c20ca3068f4f9db08c262c62b7b86544532f612a78421bdee92f4196
SHA512 a714f902ede615507cef840dcc03a5eca183c21c82cc419a924587f38b6974f5aa45fcfcc2bac4d6cf82b81d1b6ad452540e0581751bfcad72e524c83757a301

/data/user/0/com.houdatv.app/files/half_star.png

MD5 a40e6a567b7aef329bda0ac200f7a23d
SHA1 2fa463649c7ba586b28670675a15e0d7a630c7e0
SHA256 ee0933e12dd4e302b1e18572d22f48861e8125e5d0201603e024d18ef5e38556
SHA512 5e77ca21445a09aa903ca08c10c1bcaf769d8273368b7981aacf1bbab08cefb7a521687e78d280828f46b625c99fde02050f5c914dd4d07fd742723f7713ee4f

/data/user/0/com.houdatv.app/files/logo.png

MD5 45c24a8686a0978086c99f7039accc17
SHA1 c63ae2601322045390c7a4f230602b74ae18d2d8
SHA256 bc9c4aa36a0dd7efe16a8b3bca9172d970fd13d70d3e718aad17a78269079912
SHA512 d5861c64b9dc9139904c3bfc7da26fa6f3d9676a5b4203ad617c661d54d3716508fb02f282f5c204bf9d6a0c7162bbb565a44f2ceb96d825177065818b797727