Reverse engineering a CSL Dualcom GPRS part 13 – checking the SIM card

The ICCID is written on the outside of the Dualcom GPRS, stored in the EEPROM, read in from the GRPS modem, and read in from EEPROM immediately before a long, random looking, string is sent to a remote server. It seems quite important.
ICCID on case

The Dualcom board also frequently checks for received SMS.

It might be worth taking a look at the SIM to see what is on it.

From previous projects, I have an Omnikey Cardman 5321 card reader. This reads both RFID cards and smart cards. We can put the SIM card in a carrier and read it with this device.
SIM from Dualcomphoto 2

SimSpy II is a free utility which can read most data from SIM cards inclouding ICCID, IMSI, Kc (which can be used to decrypt communications), SMS messages and more.

Unfortunately, nothing too interesting comes up. The card never seems to have stored any SMS. There’s no numbers in the phone book. We might end up coming back to this at some point.

SIM data

SIM data

One thought on “Reverse engineering a CSL Dualcom GPRS part 13 – checking the SIM card

  1. Permalink  ⋅ Reply


    April 5, 2014 at 1:37am

    You will never been able to get any menu access if you don’t have the key.
    You need to spoof the bus and to do that you need to do the same thing you do with smart card.

Leave a Reply

Your email will not be published. Name and Email fields are required.