Today on hackint0sh.org has been announced, that iPhone has been unlocked and have been forced to work under one Croatian carrier and Orange UK!

All can be made by your own hands: necessary tools costs about hundred dollars. What you will need:

- Programmator for Sim cards (reading/writing of sim-cards), 180$.
- Clean Sim-card - Silvercard (chip-card CPU PIC16F876 + Memory 24C64 + 8 different cellular carriers, 208 numbers in a notebook, 10 SMS), 25$;
- Programs for calculation of KI and reading/writing of sim-cards (will suit WoronScan - works faster then analogues), free of charge.

All can be purchased through eBay, enter in search “silvercard”.

This is how looks Sim-programmator.

Variants of MultiSim-cards. Usually there are some Japanese anime photo, or simply grey plastic (nobody will looks under a cover of your phone).

Let’s familiarise what we will unlock - certain codes of Sim-card and carriers. To begin job in GSM networks, phone with sim card, should “be registered” in it. Registration in a network is made on two key parametres: IMSI - International Mobile Subscriber Identity (international identification number of the user) and a key of enciphering KI (an individual key authentication of the user, used for calculation of value of response and an enciphering key). These numbers are stored on the sim card which has been given to you by the carrier, and are not subject to change. Thus, each sim card of the carrier is unique and to make a sim card clone, it is necessary to know IMSI and KI.
Step 1. Preliminary preparation

Attention!!! You make all further operations at your own risk.

MAC-users go HERE
WIN-users go HERE

Step 2. More operations

If you have passed the first step now it is required your AT&T Sim-card with your iPhone.

MAC-users go HERE
WIN-users go HERE

Step 3. Reading of IMSI, ICCID and KI

To begin with you need to know, that the third step takes a lot of time. To get IMSI number is relatively simple job, but to get KI value is 10 times more difficult. Without physical access to a sim card it is absolutely impossible (at least, for this moment). During authentication of subscriber at base station of the carrier, Sim-card ciphers with KI key a certain message (pseudo-casual inquiry), received from a network of the carrier, and returns result. The network makes the same action - and if keys have coincided, then the ciphered messages will coincide too.

The majority of programmators work on the fixed frequency 3.57 MHz, however in our case (USI v 2.0) was possibility of a choice of frequency between 3.57, 7.14 and 14.28 MHz. The higher the frequency of quartz generator, the faster is scanning process. However it is necessary to consider, that Sim-cards of different carriers give in to scanning on different frequencies, more precisely on frequency 3.57 MHz all sim cards can be scanned, on higher frequency not all Sim-cards can be scanned. For example, in Moscow BeeLine Sim-cards are scanned only on frequency 3.57 MHz, MTS Sim-cards - on frequency 7,14 MHz and Jeens - on frequency 14.28 MHz. Megaphone Sim-cards are scanned on frequency 14.28 MHz, however to get KI is completely impossible.

So, what we will need:
- To insert your own, not AT&T Sim-card in Woronscan and to get out from it IMSI + KI (process can lasts about 40-50 minutes);
- To do the same operations with AT&T Sim-card, to receive IMSI + ICCID.

So we receive the following result (depends on your Sim-card):

We save result in a file. Then we open with text editor this file and find in it your Sim-card values KI and IMSI. In a case if you can’t find KI, the program will stop working on 60000 references to a Sim-card. It is made to avoid blocking of a Sim-card, because of excess of threshold number of references. However you can compulsorily continue scanning, but in personal experience we can say, that if KI have not been found less than for 60 000 attempts it will not be found any more never. We checked on the Megaphone Sim-card, after 90 000 references Sim-card was blocked, so to use to it became impossible (such operations try to experiment on Sim-cards, which is not pity to through away).

Perfectly. Let’s continue. Now it is required:

- To download utility SIM-EMU;
- To place Silvercard in programmator, and start SIM-EMU;
- Configure tab>> Read from disk>> to pick up SIM_EMU_6.01_iphone. HEX and SIM_EMU_6.01_iphone_EP. HEX>> check out, that cells of the utility from 0 to 9 became red;
- Into a 0-cell we insert your Sim-card’s IMSI and Ki numbers, then AT&T ICCID number. For ADN/SMS/FDN # we insert manually 161, 15, 4. For SMS Centre insert  your service number for sending SMS (we look in menu of your iPhone or on a site of the carrier);
- Into a 9-cell we inserte AT&T IMSI number;
- In options Config mode we check Card;
- We press Write to card;
- We switch off iPhone, we insert created Super Sim-card;
- We switch on iPhone;
- And observe an icon of the carrier and make test call to your grandmother or grandfather. Now you are The Lord of iRings !!! Enjoy, iphone maniacs!

Big Thanks to iPhones.ru

Advertisement

(No Ratings Yet)

 Loading ...