±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 2 Overall: 35647
New Yesterday: 9 Visitors: 197

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Webinars

Qualcomm Download Mode 9006

Discussion of forensic issues related to all types of mobile phones and underlying technologies (GSM, GPRS, UMTS/3G, HSDPA, LTE, Bluetooth etc.)
Subforums: Mobile Telephone Case Law
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
Page 1, 2  Next 
  

Thomass30
Senior Member
 

Qualcomm Download Mode 9006

Post Posted: Jun 08, 18 20:19

Hello,
Im trying to test the method when I get physical dump via Qualcomm Download Mode 9006.

I have testing model of Samsung galaxy S4 i9505 with Qualcomm Snapdragon 600 Processor so I assume it will qualify to my test .
I downloaded eMMC RAW Tool in order to image the device.

I have installed Qualcomm drivers into Win10 imgur.com/a/vdh4Zni

And here is my problem:
I was trying to Switch S4 i9505 into Qualcomm Download Mode 9006 by pressing and holding the volume down key and connecting the device to computer via a USB and all I get is that my device goes into Download Mode imgur.com/a/GChbXvk

Then when I start eMMC RAW Tool I dont see any device.
imgur.com/a/reEzybA

Is Qualcomm Download Mode 9006 looks the same as Download mode like link above or am I doing something wrong ?

What should I do in order to get physical dump using Qualcomm Download Mode 9006 feature ? Rolling Eyes  
 
  

the_Grinch
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 08, 18 23:28

Might be wrong, but if you're attempting to get the device into EDL mode you'd need the proper cable. My experience has been to use the EDL cable and that puts the device in the proper mode (screen remains blank) and then you might be able to use this tool.  
 
  

passcodeunlock
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 09, 18 06:51

Depending on the device the EDL mode might be available by running "fastboot reboot edl".

If the software way is not available, there could be EDL hardware pins which you need to shorten and the device goes into EDL mode at the next startup.

If EDL pins aren't available, you can try using an EDL cable.

If nothing above works, shorten the eMMC CLK or DAT pins with GND, this will always work, since the manufacturers implement emergency mode for cases of hardware failure. Be sure you remove the short before you connect the device for physical acquisition at the next run.
_________________
Apple passcode unlock + decrypted filesystem dump, Android user locks unlock + physical dump with decrypted userdata partition. We provide our services world-wide, but we reserve the right for choosing which tasks we take and which we deny! 
 
  

arcaine2
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 09, 18 10:29

Samsung phones in general have a software way to enter EDL mode blocked. EDL cable works for some (like G357) but now for i9505 as far i as i tried. There are no testpoints on the board so the only way CLK pin with ground and this will put phone in 9008 mode. To actually make a dump from this mode a correct loader is required, nowhere to be found publicly. As far as i know, reaching 9006 (MMC Storage) mode on Samsung is out of the question, at least directly. It may be possible to switch from 9008 to 9006 if you had a correct, signed loader.

If your phone is semi-working you can always flash TWRP and make physical eMMC dump that way.  
 
  

Thomass30
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 10, 18 18:42

Thanks for answers.

arcaine2 the problem isnt getting physical dump itself. All I want is to test the method of using Qualcomm Download Mode 9006.

Miki I would rather not to disassemble the phone right now I thought there is some easiest way.

I was reading Mobile Forensics – Advanced Investigative Strategies book and there was section about Entering Qualcomm Download Mode 9006. It was said:

"Switch your device into Qualcomm Download Mode 9006. To do this, you may attempt the following sequence:
1. Switch the device off (wait while it shuts down completely).
2. Press and hold the hardware volume down key
3. While holding the key, connect the device to your computer via a USB cable.
4. Wait until the device displays Download mode or Updating firmware 0%.
5. Release the key and wait while the drivers are installed. "

This is why I thought I can use standard USB cable.  
 
  

passcodeunlock
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 10, 18 20:52

You just read an outdated manual, it happens sometimes - or most of the times Smile

For shortening the CLK+GND you don't need to totally dismantle the device, I won't post here, but there are sime-public resources for TAP for this device Smile It's enough to shorten those...

In forensics always use the easiest method possible, which at this point is flashing a custom recovery and create a dd image of the userdata (not encrypted by default) partition to an SD card.

Use EDL method when nothing else works Smile - right before chip-off.

Somebody (who has time for it) should write and publish a suggested workflow for acquiring mobile devices.
_________________
Apple passcode unlock + decrypted filesystem dump, Android user locks unlock + physical dump with decrypted userdata partition. We provide our services world-wide, but we reserve the right for choosing which tasks we take and which we deny! 
 
  

Thomass30
Senior Member
 

Re: Qualcomm Download Mode 9006

Post Posted: Jun 10, 18 21:47

Yes i know, I always try the simplest possible method.
I just want to try this Qualcomm 9006 Method in future cases when any other method fails  
 

Page 1 of 2
Page 1, 2  Next