I was trying to hack a USB flash drive encrypted and protected by --- when I learnt a number of things about USB flash drives:
- All USB flash drives have few main components
- The flash memory chips that store the data
- The controller that:
- Allows access to the data
- Lets any OS understand the kind of device being used
- Certain controllers can be manipulated to:
- Create partitions
- Hide partitions
- Decided Disk encoding (EXT3FS, FATX, FAT32, HFS, ZFS, ....you name it...)
- Encrypt content
- Masquerade (across OSes) as different type of storage devices (e.g. a CD-ROM)
Now all this sounds quite terribly dreary but really helps understand the steps that I followed:
- Unplugged all other devices from USB ports
- Plugged in the dead device...
and made sure that it was detected and that the OS had loaded at least the mass storage device drivers.
At this stage, if I tried to access the device or even format it, all I got was an error that told me that the OS could not read the memory on the device ...OS Access error - To figure out the:
- The exact controller chip used
- The memory chips used
- State of the controller and the memory chips
I downloaded and ran Chip Genius
(You could download this software from:
http://www.onlinedown.net/soft/67367.htm
or
http://en.kbdown.com/237488.html
I told me that this device had a Silicon Motion SM3255AB controllerChip Genius to identify the controller - Next, I downloaded the SMI 3255AB controller tool from http://dl.mydigit.net/special/up/smi.html
(If you have a different controller you'll have to search and get the relevant controller) - Running the tool I could see that the memory was accessible and so I could now try flashing the controller back to a default state.
SMI Controller Tool - Initial Interface - Next I clicked the space bar to run the tool and it ran a pretest and formatted the drive thus...
SMI Controller Tool - Flashing SMI Controller Tool - Flashing Complete
OS has remounted the device and shows it empty and functional - Now, I wanted to make a few low level changes so I clicked Settings (Password in most SMI controller tools is 320) and here is what you would see... (Click Ok once you are done tweaking and then run the flashing process again. Be careful and aware of what you do since it can do nasty things to the device :) )
This solution would not have been possible without the painstaking recording of procedures and facts by a number of sites. Here are some that made my life easier and got more than one USB driver working: