OT-dm
commented
9 months ago Hello!
Unfortunately no (or not yet :)). There is file 'cryptofile' in the root of archive. Presumably it generated taking checksums of files included to archive and digitally signing it. Flashing tool lsec6318update checks this file entries to validate content => modified AllAppUpdateA13.bin will not pass verification. Options as i see it now:
- restore how this file is generated. If external(not included to lsec6318update binary) private key used, this is not feasible option. If key is included it might be possible in principle, but still complicated.
- patch lsec6318update to bypass this checking. Superficially this option looks more feasible, however it requires arm64 assembly knowledge.
I've used https://github.com/NationalSecurityAgency/ghidra/ to get reversed C/C++ code from lsec6318update arm64 ELF binary for finding algorithm of password extraction part. IDA Pro(https://hex-rays.com › ida-pro) should work too for arm64.
rabbity417
thank you With this method, now I have succeeded in extracting apk from AllAppUpdateA13.bin. Conversely, do you know how to create the AllAppUpdateA13.bin file?