BQ AQUARIS X - Fake...
 
Notifications
Clear all

BQ AQUARIS X - Fake user accounts?

8 Posts
6 Users
0 Likes
3,216 Views
(@dybmowst)
Posts: 3
New Member
Topic starter
 

Hi

I am currently looking at my 3rd BQ AQUARIS X handset, and I find that all three have exactly the same features … e.g. All look completely fresh, all do not allow access to enable developer mode, all have limited number of settings menu items. SOMETHING STINKS!

I have heard of (but not yet experienced) a fake partition which exists when an android device is either incorrectly started or an incorrect PIN/passcode is used (or there is a 2nd PIN in existence which triggers the fake account).

Is there anyone who can shed some light on this for me please? I need to be sure I am not looking at a fake user account on the devices.

If my analysis of the situation is correct … how do I get the device back to the original PIN entry screen, as right now it starts to an unprotected swipe unlock.

Regards….

 
Posted : 22/03/2018 9:40 am
(@tobiasj)
Posts: 22
Eminent Member
 

I have actually been looking into this device over the last couple of weeks and it seems the device is running some sort of dual-boot system, starting the device normally takes you into a partition that does not allow USB debugging or anything really do be done on the device. You can't see the IMEI, you can't turn on WiFi or Bluetooth, nothing!

However, booting the device while holding volume down seems to take you to a password screen which I am guessing will take you into the "real" operating system after entering the correct password, unfortunately the password is unknown for the device that I have. I've investigated a few other bq Aquaris devices but none of the others seem to have had this dual-boot system.

 
Posted : 22/03/2018 10:05 am
(@dybmowst)
Posts: 3
New Member
Topic starter
 

Thanks, I will have a look into that. Though I think you're right about the dual boot thing … trouble is that a forensic environment doesn't really allow much room for experimentation on live exhibits, so if there any more experiences out there, then I would love to hear them.

Regards …..

 
Posted : 22/03/2018 10:16 am
(@agolding)
Posts: 31
Eminent Member
 

These are running the encrochat OS in the secure partition. If you speak to NTAC they might have some capabilities.

 
Posted : 22/03/2018 2:19 pm
(@dybmowst)
Posts: 3
New Member
Topic starter
 

Ah, that makes some sense too … thanks for that good info.

Regards …..

 
Posted : 22/03/2018 2:30 pm
(@iwhiffin)
Posts: 1
New Member
 

I also now have an Aquaris X with EncroChat related to a pretty serious offence.

I'm still researching and trying to get my agency to buy me a test device but has anyone had any success with this device? I see that the X5 could be compromised but I haven't found anything on the X yet?

Thanks
Ian

 
Posted : 13/04/2018 5:01 pm
 Bypx
(@bypx)
Posts: 9
Active Member
 

i've got some Aquaris X with encrochat OS. Now ufed can do physical via bootloader but these phone have locked EDL mode, i'm looking for a testpoint on the pcb. Any hint?

 
Posted : 19/07/2018 7:21 pm
(@dc173)
Posts: 4
New Member
 

has anyone had any luck with running them on forensic machines ? we have just gotten one and doesnt want to connect to UFED PC

 
Posted : 17/10/2018 10:07 pm
Share: