Inspecting AOR AR5700D firmware updater

AR5700Updater.exe

Detect It Easy

 

Lots of Motorola s-record inside exe. Too many strings for the Detect It Easy Strings feature.


Linux strings cmd works.

strings AR5700Updater.exe | grep -E "S[0-9]+" > AR5700.txt

remove non S-record format lines in head and tail and in the middle (find with e.g. srec_info tool).

srec_info: 

Termination records (S9) should be last => use e.g Python to get data blocks into several files.

n = 1
print("start")
s = ""
f = open("ar5700.txt", "r")
lines = f.readlines()
for line in lines:
    s = s + line
    if line[:2] == "S9":
        with open("ar5700-" + str(n) + ".txt", "w") as w:
            w.writelines(s)
        print("ar5700-" + str(n) + ".txt")
        n = n + 1
        s = ""
f.close()
print("end")
 

=> 10 files of S-Records

Some maybe DSP code and four which are highly probable SuperH SH-2 code (Ghidra shows nicely string and code when CPU selection is SH-2).



  

 

 
 
 
 

Comments

Post a Comment

Popular posts from this blog

Telive-2 how-to

Image
Oracle VirtualBox Debian 12 clean install sudo apt install rtl-sdr sudo apt install wireshark sudo apt install xterm sudo apt install audacious https://github.com/sq5bpf/telive-2 download: https://github.com/sq5bpf/telive-2/tree/main/scripts/install_telive.sh or wget it chmod 755 install_telive.sh ./install_telive.sh set desired frequency teliveusr@debian:~/tetra/telive-2/gnuradio-companion/python3_based_gnuradio$ nano telive_1ch_simple_gr310_udp_xmlrpc.grc     open 2 terminal windows run GNU Radio Companion, load and execute the grc in terminal window 1 run teliveusr@debian:~/tetra/osmo-tetra-sq5bpf-2/src$ ./receiver1udp in terminal window 2 run teliveusr@debian:~/tetra/telive-2$ ./rxx   receiver1 and receiver2 require simdemod2.py. It can maybe copied from original telive src teliveusr@debian:~/tetra/osmo-tetra-sq5bpf-2/src/demod$ ls __pycache__  simdemod3_telive.grc  simdemod3_telive.py  simdemod3_telive_send_udp_to_telive.py
Read more

Inspecting Alinco DJ-X100E firmware updater

Image
DJ-X100E(CPU 4.00-004 _DSP 1.07).exe dotPeek, Visual Studio 2022, Detect It Easy Detect It Easy  Motorola S-record inside (DIE Strings view)   DIE save Strings to file   dotPeek to Visual Studio solution. Renesas microcontroller? BIN file inside VS solution. VS can show its content in HEX and ASCII   Python code for extracting S-record lines from the DIE strings file fin = open("G:\\DJ-X100E(CPU 4.00-004 _DSP 1.07).exe.Strings.txt", mode="r", encoding="utf8") fout = open("G:\\DJ-X100E-SREC.txt", mode="w", encoding="utf8") arr = ["S00", "S311", "S315", "S309", "S30B", "S307", "S30C", "S30F", "S30E", "S30D", "S705", "S306"] while True:     line = fin.readline()     if not line:         break     for item in arr:         i = line.find(item)         if i > -1:             fout.write(line[i:])             break...
Read more