Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
Pages: 1
Hi all,
I dumped a mifare 1k card to a bin file without problem, but when I tried to restore it to another mifare 1k card, some sectors were wrongly written
the correct dump was
00000000:6d a1 97 c2 99 88 04 00 48 85 14 58 51 80 41 10
00000010:70 00 09 38 09 38 09 38 00 00 00 00 00 00 00 00
00000020:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000030:a0 a1 a2 a3 a4 a5 61 e7 89 c1 b0 b1 b2 b3 b4 b5
00000040:88 05 58 80 00 03 64 16 00 00 21 00 03 00 f1 94
00000050:01 01 01 0e 02 08 ee ee 00 00 00 00 00 00 00 00
00000060:00 00 19 01 0d c7 00 01 00 00 00 00 00 00 00 00
00000070:a0 a1 a2 a3 a4 a5 1e 11 ee 5a 84 eb 3e 2e 8e ee
00000080:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000090:00 00 00 02 00 00 00 00 dd dd dd dd dd dd dd dd
000000a0:dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd
000000b0:a0 a1 a2 a3 a4 a5 0f 00 ff 9b 86 3e 63 1d 42 60
000000c0:dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd
000000d0:dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd dd
000000e0:03 00 47 c1 15 43 e6 00 00 00 00 00 4d 49 43 00
000000f0:a0 a1 a2 a3 a4 a5 4b 44 bb e9 0c 88 41 b4 7d 59
00000100:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000110:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000120:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000130:a0 a1 a2 a3 a4 a5 78 77 88 69 b0 b1 b2 b3 b4 b5
instead of that doing a "hf mf restore" I got this written (I got this information back by dumping the second card):
00000000:c2 3d 4a ca 7f 08 04 00 62 63 64 65 66 67 68 69
00000010:70 00 09 38 09 38 09 38 00 00 00 00 00 00 00 00
00000020:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000030:a0 a1 a2 a3 a4 a5 61 e7 89 c1 b0 b1 b2 b3 b4 b5
00000040:88 05 58 80 00 03 64 16 00 00 21 00 03 00 f1 94
00000050:a0 a1 a2 a3 a4 a5 1e 11 ee 5a ff ff ff ff ff ff
00000060:a0 a1 a2 a3 a4 a5 0f 00 ff 9b ff ff ff ff ff ff
00000070:03 00 47 c1 15 43 e6 00 00 00 00 00 4d 49 43 00
00000080:a0 a1 a2 a3 a4 a5 4b 44 bb e9 ff ff ff ff ff ff
00000090:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
000000a0:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
000000b0:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
000000c0:a0 a1 a2 a3 a4 a5 78 77 88 69 b0 b1 b2 b3 b4 b5
000000d0:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
000000e0:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
000000f0:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000100:a0 a1 a2 a3 a4 a5 78 77 88 69 b0 b1 b2 b3 b4 b5
00000110:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000120:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00000130:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
etc
what did I do wrongly?
I can't reuse my second card now... is there any possibility to reset it?
Thanks for your help,
François
Offline
Looking at sector0-block0 of the second card this can be a Changeable UID Chinese card or maybe an NXP Clone (not original); it depends on how much you payed it (18-30 dollars for a changeable UID card).
The problem is that you set access conditions of blocks 1, 2, 3 and 4 (and maybe others, the dump is not complete) to non-possible values [e60000 for sector1 and 000000 for all the others] so probably this is the reason why you are not able to manage the card anymore; if it is a Chinese Changeable UID card you can re-set those blocks using specific commands for those cards, in any other case I don't know if it is possible to restore it but probably not.
You can see the wrong access condition bytes at addresses:
00000070
000000B0
000000F0
00000130
Last edited by asper (2013-05-22 06:35:07)
Offline
Pages: 1