DoH initial resolution of the dns address

So I have setup dns over https but I am not sure how this is supposed to be more privacy than just regular dns.

Suppose I use, then doesnt the application first need to resolve "" (to or whatever) in order to make the https connection?

Then couldnt someone simply hijack the initial resolve to something else and the system is once again compromised? How does DoH know to contact from "" at the start?