re-using sim cards

[fofodaman]

has anyone tried to erase & reprogram a standard GSM sim ?

I have 2 cards that are blocked (puk) & as you can tell, i do not have the puk codes, so i have been trying to find out what kind of a proccessor they are, with no luck,,,

Has anyone a clue how to , if possible at all, reprogram those ?



Thanks.

[cut_r2000]

i tried to erase standard GSM sim card but can not erase or reprogram

[fofodaman]

well, mine reads blank! yet it still asks for the puk, i bet if I ever do find the puk, the pic will be erased! it is the eeprom that is answering to the phone power on,,, however, if we can find the type of pic, maybe can be done? or is it write-protected?

[Virus_GSM]

the pic is SGS Thompson ST16SF48 CPU with 8kb or 16kb (GSM phase 1 or 2)
I think a simcard acts like a Goldcard with a Pic 16C84 that can be programmed a single time.
Anyway i haven't succeded to erase the damn chip.
It would be great if it wil work. wouldn't it?
Regards

[VendorGSM]

You are right Virus_GSM

The normal sim-card is echivalent with wafer-card with pic 16C84 and eeprom 24c16 or 24c32. I this case programming for normal sim-card is imposible because PIC is C-series and can be programmed a single time; is programmed with CP on and don't have any loader emmulated on it. This mean the PIC can't be readed, can't be reprogrammed and because for acces eeprom is posible only via PIC and only if PIC have loader on it, the eeprom ca't be readed or programmed too!

My best regards,

[Przemo]

If you are in possession codes of administrator to this cards you will be able to remove, to add, to widen, to change statuses of files ( of course in due measure possibilities of memory of card ).
If their you do not have, nothing you will make.
I did not hear about possibility of cleaning up of not used cards.

I greet.

Przemo P

[VendorGSM]

[QUOTE]Originally posted by Przemo
[B]If you are in possession codes of administrator to this cards you will be able to remove, to add, to widen, to change statuses of files ( of course in due measure possibilities of memory of card ).
If their you do not have, nothing you will make.
I did not hear about possibility of cleaning up of not used cards.


possession codes of administrator????

what is this??? I have many friends who working for some providers in security sectors and up now I don't hear nothing about this "possesion code" You are sure about that or is only teoretical????

[Przemo]

Access condition level coding:

level: access condition:
0 always
1 PIN1
2 PIN2
3 not used
4-14 admin !!!
15 never

Przemo P.

[Virus]

that means that the puk code is one of the admin's codes.
where are the other codes stored? at the provider or manufacturer ?
regards

[Virus_GSM]

are this codes generated by the manufacturer or the provider? who knows? maybe we can figure it out somehow.
regardz !

[nab]

I think you are wrong, if sim cant be erased/re-programmed in both pic and eeprom, how can it add names/number or store texts or allow change of pin code ????

is this making you guys think ? I hope so

take care friends

[fofodaman]

I agree with nab, i think it can be done. i am not sure if there is a program that supports what virus_gsm described as the type

Quote:

the pic is SGS Thompson ST16SF48 CPU with 8kb or 16kb (GSM phase 1 or 2)

but if there is, then we can put it to the test.

in all gsm sim projects, there is always a storage place, & knowing that all these projects are based on dejan's first gsm_sim, which was based on his reading from an original sim,, then what can be done with these projects can be done with the originals, the question that remains is, is there a way to program such a sim ? talking about the SGS Thompson ST16SF48, be it a blank one. will one of these progys on hand do the job?

[Matique2k]

I found a PDF file containing details about these so called admin codes for SIM cards on the ETSI site i think i typed in GSM or something in to the search engine. I cant remember the file name but i have made a hard copy of the file ill try to get some info typed up and post it

[nab]

last point, sim card can be read and written i have done this today, i read it using a cheap reader, it read phonebok, telephone number for sim,sms messages and roaming info , all other basic params inc PIN code, BECAUSE PIN CODE WAS NOT ENABLED!, it also wrote these details to another sim.

[Matique2k]

I have a list of GSM instructions for SIM cards

CLASS:

GSM = A0h

INSTRUCTIONS:

04h = Invalidate

10h = Terminal profile
12h = Fetch
14h = Terminal response

20h = Verify CHV
24h = Change CHV
26h = Disable CHV
28h = Enable CHV
2Ah = (ADMIN)
2Ch = Unblock CHV

32h = Increase

44h = Rehabilitate

88h = GSM Algorithm

A2h = Seek
A4h = Select

B0h = Read binary
B2h = Read record
B4h = (ADMIN)
B6h = (ADMIN)
B8h = (ADMIN)
BAh = (ADMIN)
BCh = (ADMIN)

C0h = Get response
C2h = (ADMIN)
C4h = (ADMIN)
C6h = (ADMIN)
C8h = (ADMIN)
CAh = (ADMIN)
CCh = (ADMIN)

D0h = (ADMIN)
D2h = (ADMIN)
D6h = Update binary
DCh = Update record
DEh = (ADMIN)

FAh = Sleep
F2h = Status

I hope these are helpful to someone

ps. The INS marked with ADMIN i dont know what they do yet so anyone with info could you post it cheers.