Switch to full style
CompactFlash, SD, MMC, USB flash storage. Anything that does not have moving parts inside.
Post a reply

Recovery from Encrypted dead phone

December 28th, 2017, 7:00

Hi,
We do chip off recovery from mobiles.
Recently got two phones ASUS ( Z010D ) & GIONEE S6
Both seems to have USER area Encrypted.
Is there a way to crack it. Looking for way forward.
Thanks

Re: Recovery from Encrypted dead phone

December 29th, 2017, 19:17

Phone was death or it was your decision to make ChipOff to read data ?

Re: Recovery from Encrypted dead phone

December 30th, 2017, 1:37

Phone was death or it was your decision to make ChipOff to read data ?


Both phones were dead
No JTAG or ISP available for these models

Re: Recovery from Encrypted dead phone

January 7th, 2018, 14:45

JTAG access are not available from few years already... ISP in case of hardware encryption will not help you either.

Overally: if Android is below 5.x you can get Key from crypto footer and crack Encryption (it will work for FDE 1.0 and 1.1/1.2). Anything higher like 5.x and up uses FDE v1.3 with new crypto footer which is bounded by asymmetric hardware private key (CPU) and stored in TEE.... by this mean that cracking such encrypted storage are for this moment not available.

Only way to recovery data from physical damaged phones which was encrypted is to repair them. If this is not an option since for example PCB is crushed etc you will need to buy same phone, remove by grinding eMMC and CPU from it and then solder to donor board your eMMC/CPU removed from damaged phone.

Re: Recovery from Encrypted dead phone

January 9th, 2018, 18:02

Small update: it's possible to decrypt encrypted Android UserData partition that uses FDE 1.3 (KDF 1-PBKDF, 2-SCRYPT and Crypto type is AES-CBC- ESSIV:256)

If you are interested send message to technika@multi-com.pl for fast answer or PM here
Post a reply