Discussion in 'Android Devices' started by b33r, Sep 18, 2009.
Another techie post, sorry..
Not sure there would be anything in the import table if it's COM+? Wouldn't it load it via its CLSID? I didn't notice any imports for other NPS files either.
The downloads come from fus.samsungmobile.com, so it's a logical assumption that it's the correct DLL, but not guaranteed to be right of course.
If it's definitely using FUSCrypt.dll and the Import routines don't work, it would suggest that the crypto keys are hard-coded rather than communicated to the client. Windbg might be useful whilst performing a genuine NPSMitsBinaryUpgrade.exe download if so. Might give away the secret keys...
Since my last post, I wrote a brute force checker as I described. Nothing showing up for September yet, but it did find the following August releases (all of which we already know about). The download links are useless of course as we can't decrypt the files....
Operator: O2 UK, CSC: I7500O2UIH2, Firmware: I7500XXIH6
Operator: O2 DE, CSC: I7500VIAIH4, Firmware: I7500XXIH8
Operator: Vodafone IT, CSC: I7500ITVIH2, Firmware: I7500XXIH7
All of academic interest really than practical usefulness
You must hack their site to get latest firmware.
Only in Samsung
Good luck with that! I agree that it's difficult to believe that the strings are hardcoded, but worth a crack. I too had a moment where I saw the file decrypting and thought "I've cracked it!", only just to get an invalid zip file!
Are you finding that the ImportPublicKeyBase64 and ImportSymmetricKeyBase64 methods don't work too? I captured some public keys and symmetric keys via Fiddler2 and whilst they're valid base64, it just refuses to load them. Same if I generate my own key/symmetric key, export them (ExportPublicKeyBase64 / ExportSymmetricKeyBase64) and then try and import them again. Completely refuses.
Interesting that there was an O2 UK firmware for the UK back in July. Must have been what they did their accreditation testing with (I believe it failed initially).
If nothing else we can produce a complete history of firmwares now. That kind of thing has been done by piecing together pieces of information from the community up to now.
im no clever dude but I couldnt even download the the stuff you said I just got this come up in my browser:
use chrome or IE
wow guys good find, i wish i could help out some how but im low skilled when it comes to stuff like what you are talking.
its nice to see that you can pull a list though and that o2uk is there prior to this new update.
if only for the csc.
how did people obtain these software versions for use with odin before ?
That's actually quite interesting that you got that. Which web browser are you using?
Interesting. BTW does the update program send your firmware version to the server then the server returns with the firmware to update to or is there a list that the program checks to see if there's an update?
TEMPID is gotten from login.php and BODYR doesn't make any sense (to me) if you decode it. It's base64 encoded, which is easy to identify from the == in the end (urldecode it first).
It's pretty hard to understand why the secrecy, most other operators freely provide the firmwares, it's cheaper for them that way. Oh well..
Don't mean to hijack the thread, but I see some knowledgeable Galaxy firmware discussion here, and I thought someone could help me flash the original camera firmware version. In fact, I'm willing to contribute $50 for instructions on how to do that (returning the phone would be more expensive and would benefit some shipping company rather than a hacker).
Another way to do it, is to flash your ROM with some old firmware, so that it will recognize the device and want to update it. After it downloads the update (h8 in that case), you don-t click "next" but you replace the tar file it downloaded with the new tar file (rename it). That way it'll decrypt the file for you.
Sorry i half stopped following the thread as went into an area I had no idea about lol, is that something I could help with?
EDIT: Actually I've just read what you were referring to, don't think I'd really wanna do that...
XEN XEB I7500XXIH2 is what they updated my i7500 with today, havent heard anything about this version..
Had to send my i7500 in because it died. got a new mainboard and a software 'update' to XEN XEB I7500XXIH2 ehum.. sounds not like an update to me but i will check when i get the phone back..