Friday, August 16, 2013

SIM Cloning

1. Plain Wafer Card
2. Sim card reader
3. Software to extract Ki & IMSI
4. Wafer Card Programmer
5. Software to program the wafer card

This is a simple and complete guide to sim cloning. With the help of this guide, you will be able to get your sim cloned. This guide is applicable for cloning COMP128V1 version simcards. Even though the newer algorithms can’t be cloned now, almost 75% of us are using the cards with the COMP128V1 algorithm.

STEP1 : Insert the simcard in the simcard reader and use the software to extract the Ki, IMSI and ICCID of your simcard. Here i used Woron scan 1.09

STEP2 : Make the files for PIC and EEPROM with SimEmu Configurator or 16 in 1 SimEmu Configurator by Pic-ador. If you are using the SimEmu Configurator by Pic-ador uncheck the A3A8 check box under security. Please dont enable this even from the sim services menu. If enabled, it counts back to zero and when it reaches zero, all bad things can happen to your simcard. In the configurator you can set the number of ADN, FDN and SMS. You can use the formula “16448 = (ADN – 51 ) x 32 + SMS x 176 + FDN x 32 must be less than 6480” for silver wafer cards. Then generate the Hex files for PIC and EEPROM by clicking the Generate Hex file. With this configurator, in addition to the 16 number slots, you can make the simcard a Motorola Test card too. In 16 in 1 configurator the positions are from 0-9 and from A-F. Each position can be customized by individual PIN an PUK codes.

STEP3 : Now we have the files to be written to the Silver Wafer card. For this we need the Wafer card programmer and the software for programming. Here i am using the Millenium 2000VX Max programmer and the Cardmaster 2.1 software. Connect the programmer and run the software. Select the type of card you are using. Select the port by clicking setup > port. If the port set by you is correct the red colour with message on status bar changes to yellow and shows no simcard. Insert the simcard and load the files for PIC and EEPROM in the file to PIC and file to EEPROM fields respectively. Don’t change any other settings. Now you are at the last stage. Press F3 or click edit > Auto Program. You can watch the status bar about what is happening. Programming the pic.. programming the EEPROM… programming the pic…. verifying…. and at last you will get the message that the card is programmed successfully. Here you may ask the question why the PIC is programmed again after programming the EEPROM?. The PIC is first programmed with the EEPROM loader to program the EEPROM. then the EEPROM is programmed through the pic. After that the contents in the pic is erased and the actual file is programmed in the PIC.

STEP4 : Now you are completed. Take the card out of the programmer, cut it to the size of the normal simcard and put it in the handset. After switching on, the handset asks for PIN code. Enter any four digit number. This will be the PIN for your first position “0”. It asks for the PUK too for the first position. The phone switches on with no network or “Sim card not registered error”. This is normal because no operator information is there on the simcard. Now we are moving to the final step of your dream. Browse through the menu and find the Sim Tool Kit. Now it should be named as Sim-Emu 6.01. Open it and you can see the menus Configure, Select Phone and Information. Select Configure and go to config postion. It asks for the position. You can select any position from 0-9 and A-F. After selecting the position it asks for a PIN and PUK. Always provide different PIN and PUK for each positions. It helps us to switch to a number directly when the handset is switched on. After PIN and PUK it asks for KI, IMSI and ICCID. You can now recall the extracted values from STEP1 and enter it to appropriate fileds. Now you are done. You have a cloned simcard and moreover you are going to have a simcard with 16 cloned mobile numbers.


