Where is imei stored in moto android?

[Nicogalan]

We know samsung store imei on efs folder, sony, on trim area or hwconfig...

where is moto storing imei???

[dest]

Samsung doesn't store IMEI in efs folder on all models, only exynos CPUs. Moto QUALCOMM uses the same as all QCM models, inside EFS raw. Only modem can decrypt partition into EFS raw.

[Nicogalan]

So, how to even read moto qualcomm??

where are they stored??

sorry, I did not undertand

can we access somehow to EFS raw??

thanks

[dest]

You can only access encrypted EFS, so its useless for you. Unless you figured out how to decrypt it. In android, partitions modemst1 and modemst2 are encrypted EFS.

[Nicogalan]

I know some reversing, but I dont know where are they exactly....

so, it seems they are not files......


how to access???

with root explorer, can we try to download and check??

but as you say, they are not files.... so, how??? O_O

thanks

[Nicogalan]

I readed the note 3 post on this subforum, its a great post....

is cpuid involved in moto qualcomm too??

msm7630

thanks

[dest]

UID is in all QUALCOMM. I THINK it is used to decrypt to EFS raw. That's why you can't write modemst from one phone to another.
BTW, I remember you from mobile-files a very long time.

[Nicogalan]

Yes, I got your name in my head too, probably from the old mobile-files

and I think you were active at cdma

I was supermod there....

and mod at "decoding and programming" and "motorola iden phones"

could you point me how to get things needed to try to read and write that partitions???

uid, etc???

tools needed??

thanks so much

regards

[..::SuB::..]

Get a modem dump and learn how the decryption work. This is a tipp, im not an expert in this if the modem fw decrypts the efs, the algo is there.

[Nicogalan]

I'll try it....

what ida version do you advise??

thanks

[manish1991]

Quote:

Originally Posted by ..::SuB::..

Get a modem dump and learn how the decryption work. This is a tipp, im not an expert in this if the modem fw decrypts the efs, the algo is there.

helloo brt . plz help how to make modem dump . can u share any software

thanx in advance

[Brka]

Quote:

Originally Posted by manish1991

helloo brt . plz help how to make modem dump . can u share any software

thanx in advance

root the phone, after you will have modem partition available (mapped) onto some mmcblkpXX partition,
after is trivial ... adb pull command ...

@Nicogalan .... nice to see you, again, bro

b.r.
Alex.

[Nicogalan]

Quote:

Originally Posted by Brka

root the phone, after you will have modem partition available (mapped) onto some mmcblkpXX partition,
after is trivial ... adb pull command ...

@Nicogalan .... nice to see you, again, bro

b.r.
Alex.

Hello Alex

I tried the pull command and its not working.....

I think you need to do first DD command...

example:

adb shell dd if=/dev/block/mmcblk0p2 of=tmp_header bs=512 count=1

then you can pull

adb pull tmp_header ~/Desktop/tmp_header

[dest]

Use this:
/dev/block/platform/msm_sdcc.1/by-name/
All files in that folder are linked to MMC partitions and named. Some phones may have a different msm_sdcc.1 folder. Also, you don't need to worry about blocksize or count.
dd if=/dev/block/platform/msm_sdcc.1/by-name/modem of=/data/local/tmp/modem
chmod 777 /data/local/tmp/modem
adb pull /data/local/tmp/modem

[Nicogalan]

Great, so...

what fields are "changeable"??

cpuid is OTP?? can be changed??

is there a way to "dump" from one phone and write it to another one? ans get same imei as original dump??

jtag?? can jtag do this??