Coolpad 3632A with ...
 
Notifications
Clear all

Coolpad 3632A with Secure Boot

5 Posts
3 Users
0 Likes
913 Views
(@jvaldez225)
Posts: 12
Active Member
Topic starter
 

We have the above phone in our office now and running it through Cellebrite (Physical) it stops at the point where we have to enter the pin to boot the phone. We don't know the pin, so is there any other way to get a extraction off this phone? The only cell phone software we have is Cellebrite and Magnet IEF; all up to date. Is this where EDL comes in handy? We haven't use that at all but Cellebrite doesn't ask us to use it on this device. Just tip 100 and Cable A.

Thanks

 
Posted : 14/11/2018 6:04 pm
(@jvaldez225)
Posts: 12
Active Member
Topic starter
 

If I'm asking the question incorrectly please advise. I've only been doing cell phone forensics for about 18 months and we just kinda got thrown into this. We work for a State Department of Corrections and this a phone found in one of our facilities. I'm not sure if that helps in maybe getting a response or not. I have a bunch of questions to ask you guys later on and pick your brains about this stuff and compare what we have and what is out there available we'll leave that out there for another time. If there's another solution to get past the boot pin please let me know. Thank you!

 
Posted : 15/11/2018 4:49 pm
UnallocatedClusters
(@unallocatedclusters)
Posts: 577
Honorable Member
 

If Cellebrite has already successfully made a logical and file system extraction, then you could try rooting the phone to enable a physical image.

What version of Android OS is the phone running?

 
Posted : 16/11/2018 12:38 am
(@shahartal)
Posts: 27
Eminent Member
 

Hey jvaldez225,
The proper term for the situation you’re describing where a pin code or pattern is required to boot the device is “Secure Startup”. (Secure Boot refers to a different setting and they do not correlate)
It means that the encryption key is bound to the user passcode, and therefore some sort of brute force technique must be enabled and implemented overcoming various device protections. This is not straightforward and can be a daunting task.
At this moment in time, I am unaware of any verified solution to modern Secure Startup except Cellebrite’s Advanced Services (CAS), available to Law Enforcement.
And even we don’t support all phones and every model. Unfortunately, we don’t yet support the 3632A in this mode.
We’re working on expanding this and hope to get to this model sooner than later.

Best,
Shahar
Cellebrite

 
Posted : 16/11/2018 11:54 am
(@jvaldez225)
Posts: 12
Active Member
Topic starter
 

Yes Secure Startup is what I meant. Thank you so much for your response. I'll write up what I have and send it up to the boss. Thanks again everyone!

 
Posted : 16/11/2018 3:38 pm
Share: