Hi, There is no data on the handset, however I came across a 116MB file stored on the memory card that XACT has recovered. This file cannot be viewed via the handset.
Is there any program(s) that I could try to open the file? (I've tried office, txt, rtf, but I think lits a specific file that ATM skimmers use!)
Thanks in advance
Neil
Whats the file name/extension/signature?
PS - Hi, as i presume u worked at the northern lab of where i used to work, before that dept shut down 😉
Morning, the two large files are ~audio.tmp & ~visual.tmp.
Good guess! Hows things? lol
I'd give it a go with VLC as the name suggests a media file and it's pretty robust.
Could you give us the hexadecimal file signature (generally the first few bytes) of the file? It'll give some clues as to what the file actually is.
Here are the first few bytes -
ftyp3gp4 3gp4isom mdat
I,ve tried VLC & other programs to play video but no luck yet.
Neil
Here are the first few bytes -
ftyp3gp4 3gp4isom mdat
I,ve tried VLC & other programs to play video but no luck yet.
If FLV wont play it, would also suggest to try throwing it at Quicktime as well, as I'm sure I've seen .mov files with similar headers. Depending how important the file is to your case, even if the file won't play directly, you may be able to extract frames from the video/audio for display, but this would be an involved specialist process.
Would prefer to be answering your question from data supplied as hex, but… The 'ftyp' part looks like it's a multimedia container file, with the type of 3gp4 suggesting MPEG4 data contained within. Likely this means it should meet the ISO14496-12/14 standards, and could be a .mp4 .m4a or .m4v (or others) so I'd suggest checking the headers against that.
If you want a simpler check rather than diving into the hex, it might be worth opening the file with a too like mediaInfo (http//
Phil.
Both are 3gp files, see
http//
Cheers,
The others have suggested most of what i'd have tried already. I'll just mention that in the past i've tried to play some of these 3gps/mp4s with quicktime, and renaming the extension for no explicable reason made the odd one play. So i'd try it with your file renamed to both whatever.3gp and whatever.mp4 and whatever.mov just in case to see if they play in quicktime. (i have no idea why that worked once or twice in the past)
Also, you might give this a shot
http//
Claims to be able to play everything under the sun 😉
(PS also from the site biedubbeljoe posted, a page i've found useful in the past is http//
And yeah not bad, still catching bad guys, and occasionally defending them p
Hi Nsbuck,
Maybe you can give this tool a try
http//
The description
"Defraser is a forensic analysis application that can be used to detect full and partial multimedia files in datastreams. It is typically used to find (and restore) complete or partial audio/video files in datastreams (for instance, unallocated diskspace)"
maybe it is of help, since you are likely dealing with broken/partial multimedia files.
This has helped. Thankyou )