How to Unlock Your 1.1.2 OTB iPhone With a SuperSIM
LIKE
TWEET
SHARE
PIN
SHARE
POST
MAIL
MORE
Posted January 3, 2008 at 2:43am by iClarified
With a SIM Card Programmer and a SilverSIM you can easily unlock your 1.1.2 OTB iPhone by making a SuperSIM!
Things You Need: 1. SIM Card Programmer (I used an Infinity USB Unlimited purchased from here). NOTE***: Do not purchase a programmer from Wizard Satellite. I learned that lesson the hard way.
2. Silver Card (I purchased mine at the same time as the programmer from here).
3. Your SIM Card (NOTE*** : This must be a V1 SIM Card. A V1 card is an older SIM card, probably a few years old that you can easily extract a KI number from. I will try to compile a list of SIM cards that are V1 in the near future.
Warning: This tutorial makes a duplicate of your SIM Card. In some countries doing this may be against the law. Check to make sure you are legally allowed to do this before attempting the tutorial.
SETUP YOUR PROGRAMMER I will take you through the steps to install the Infinity USB Programmer. If you plan on using a different programmer then skips these steps and refer to manual of your programmer.
Step One Unpackage your Infinity USB Programmer and connect it to the computer via the included USB cable.
Step Two The Found New Hardware wizard will open. Click Locate and install driver software.
A popup will appear asking you to permit this action. Click the Continue button.
Step Three A popup will appear asking you to insert the disc that came with the programmer. Do this now.
Step Four Another popup will appear telling you that windows can't verify the publisher of this driver software. Click Install this driver software anyway.
Step Five You will now be notified that windows has successfully installed the software for this device. Click the Close button. Notice also that the light on your programmer will change from red to a bluish purple.
Step Six Open My Computer and go to your disc drive. Double click setup.exe to launch the programmers software setup.
Complete the installation and at the end make sure to launch the program.
Step Seven From the popup that appears select your language then click the Ok button.
Step Eight You may get a firmware updated message. Click the Ok button.
Step Nine You will then get a new software message popup. You must unfortunately click to Yes to update.
Step Ten You will be taken to a website to download the latest software. Download it and install it. Once it finishes you will be prompted to restart.
Step Eleven Once the computer has rebooted launch the Infinity USB Unlimited program from your desktop.
Step Twelve If you get prompted about a firmware update click the Ok button.
Step Thirteen Click to select Virtual COM port (VCP) mode from the Tools menu.
Step Fourteen A popup window will appear. Take note of the COM port. Mine is COM port 2. Then click the Enable button.
Step Fifteen You will be notified that your programmer is in VCP mode. Click the Ok button.
FIND YOUR IMSI, KI, and ICCID Step One Download Woronscan 1.09 using the link above.
Open the zip file(ws109.zip) that downloads and drag Woron_Scan.exe to your desktop.
Step Two Insert your working SIM into the programmer. The card must be insert with the gold part down and completely inside the programmer.
Step Three Double click to launch Woron_Scan.exe from your desktop.
Step Four Click to select Settings from the Card Reader menu.
Step Five Choose the COM port of your programmer that we found above and click the Ok button.
Step Six Select IMSI select from the Tasks menu.
Step Seven Woron_Scan will display your IMSI number. Take note of this. (I've blanked some of my numbers out)
Step Eight Select ICC select from the Tasks menu.
Step Nine Woron_Scan will display your ICCID number. Take note of this. (I've blanked some of my numbers out)
Step Ten Select KI Search from the Tasks menu.
Step Eleven A dialog box will open called Magic Key searching. Click the Start button.
Step Twelve This could take a really long time; however, eventually the program will find a KI value. You will notice the series of questions marks in the Magic Key searching... window will slowly change to numbers. Once all the question marks have turned into numbers you have found your KI number. Write it down. (I've blanked some of my numbers out)
NOTE***: This process took me almost an hour. It might take more or less time.
NOTE***: If you do not have a V1 SIM you might get a message similar to this when trying to find your KI number. Starting 2R attack on 0 pair.... The GSM algorithm is not comp128-1 ...Scanning stoped... .
Step Thirteen Take your working SIM card out of the programmer and insert the SIM card that came with your iPhone.
Step Fourteen Select ICC select from the Tasks menu. Then once you get an ICCID select IMSI select from the Tasks menu. Take note of the IMSI. (I've blanked some of my numbers out)
Step Fifteen Exit Woron Scan.
Step Sixteen Remove the SIM Card from the programmer.
MAKE THE SUPERSIM Step One Download SIM_EMU_6.01_CFG_v2.1.zip from: here
Launch the SIM_EMU_6.01_CFG_v2.1.exe file from the zip to install it.
Step Two Download SIM_EMU_6.01_iphone_u1.rar from: here
Extract the two HEX files onto the desktop.
Step Three Put your Silver Card into the programmer. Do not break the card apart. Put the large card into the programmer with the gold part facing up and completely inserted.
Step Four Run Sim-Emu 6.01 Configurator from your programs list.
Step Four Click on the Configure tab.
Step Five Click the Read from disk button.
Step Six Select the SIM_EMU_6.01_iphone_u1.HEX file we saved to the desktop, then click Open.
A popup will appear saying Flash read from file click the Ok button.
Step Seven Another popup will appear. Select the SIM_EMU_6.01_iphone_u1_EP.HEX file we saved to the desktop and then click Open.
A window will popup saying EEPROM read from file. Click the Ok button.
Step Eight You will notice that positions 0 and 9 are colored red. That is good.
Step Nine Make sure position 0 is selected type in the data which you got from your carrier SIM with Woronscan (IMSI,Ki & ICCID).
For ADN/SMS/FDN# type 161, 15, 4
For SMS Centre type in your Carrier SMS center number. This is the number you dial for voicemail. Make sure you include the +1 in front for North America.
Type in 1111 for PIN1 and 11111111 for PUK1.
Step Ten Now select position 9. Enter the IMSI from the SIM card that came with your iPhone (AT&T) and set PIN1and PUK1 to the exact same thing as your entered for position 0.
Step Eleven Click the Write to disk button.
Step Twelve A write flash file window will appear. Name the flash file SuperSIM.HEX and click the Save button. I saved the file to the desktop.
You will be notified that the Flash was written to file. Click the Ok button.
Step Thirteen A write EEPROM file window will appear. Name the EEPROM file SuperSIM_EP.HEX and click the Save button. I saved the file to the desktop.
When notified that the EEPROM was written to file click the Ok button.
Step Fourteen Close Sim-Emu and launch the Infinity USB Unlimited program from your desktop or the system tray.
Step Fifteen Select SilverCard from the dropdown list.
Step Sixteen You will see two file fields in the center of the window. Load SuperSIM.HEX into the top one. Then load SuperSIM_EP.HEX into the bottom one.
Step Seventeen Now click the Write button. You will be shown the status of the write process. Click the Done button when it is complete!
Step Eighteen Pop the small SIM card out of the large card carefully. If you didn't buy the SilverSIM I did you might have to cut it manually. Follow these instructions to do that: http://www.mobileshop.org/usertech/simcutting.htm
MAKE YOUR SUPERSIM WORK Step One Place your SuperSIM into your iPhone.
Step Two A popup message will appear letting you know that a locked SIM has been inserted. Press the Unlock button.
Step Three Enter 1111 as the pin and press Ok.
Step Four The iPhone will now connect to your wireless carrier and you are good to go!
Step Five Whoops wait a minute. I noticed the Voicemail button doesn't work for me. Go to your keypad and call this number: *5005*86*yourvoicemailphonenumber#
Obviously replace yourvoicemailphonenumber with your full voicemail number ie. 15196971123.
Wait a few seconds after pressing call (It won't actually call anyone) and then your Voicemail button will work!
NOTES***: I'd like to send a big thanks to Viper who help me get through this! Thanks for your help!
Also, please do not take this tutorial and copy it elsewhere. Please link to it. Not only are you stealing my bandwidth but putting to waste the many long hours I worked on this. Thank you.
Add Comment
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Anyone have link that works for Woron Scan 1.09, free of viruses? It's impossible to find a copy of it. So if anyone knows how to get it, then please post it.
And SimEmu 6.01 for that matter.
Anyone have link that works for Woron Scan 1.09, free of viruses? It's impossible to find a copy of it. So if anyone knows how to get it, then please post it.
And SimEmu 6.01 for that matter.
to iphonebrk: If your SIM card is a 2002 Movistar card it´s probably a V1 Card, so if you are not beeing lucky obtaining the KI, it´s probably a Card Reader problem.... or not, who knows...
I can´t tell you if your PC SC Card Reader is going to work, because I don´t know the device. The only think I can tell you is that, if your card is a 16K SIM (150 contacts) and is Movistar is for sure a V1 card. If it´s a 32K SIM could be V1 or V2... In any case is your Card Reader only a reader or it´s also a programer? If it´s only a reader you have to buy a new equipment anyway... Sorry that I can´t help you more...
I followed your tutorial exactly and my Silver Sim is programed but i will only work in my old unlocked iphone, in the 1.1.2 OTB iPhone it just does not work.What could be wrong? Any ideas?
I jailbreaked it and it is on 1.1.1, must I update it to 1.1.2 again? But why does it work in my old 1.0.2 that is now 1.1.1.
How can I tell in advance if my IMSI can be found in advance of buying the equipment? I have a Globe SIM from the Philippines I want to use when I go there.
I'm sorry Chus, I was worng. My SIM is from 2002... My phone is from 2004! I hope my SIM could crackable, I think my problem is I don't have a Phoenix Card Reder... Could I do this with a PC SC Card Reader?
K = Kbytes.... is the memory of the SIM card used to store names and phone numbres.
At the beginning the cards use to have 16Kbytes that was enough for 100 contacts, with 32Kbytes you have more or less 150 Contacts....
If your Card is a Movistar 2004 it´s for sure a V2 SIM with 32 or 64Kbytes..... V1 SiMs where sold in Spain till the midle of 2003 more or less... I´m afraid your SIM card is not going to be crackeable..... sorry.... :-(
Hi Chus, what do you mean when you ask "How many K´s do you have in your SIM card?" What's that? I've got my SIM card since 2004 (I think) and it's from Movistar, so I think it coluld be a V1.
I bought a stealth sim and tried to use it, got "no sim" , under microscope could see that the through hole vias in the stealth sim wee not connected. Could see scratches on the coating on the stealth sim chip. Gotta be real careful how you insert it, it's delicate. I sent it back to get a new one because of the through hold via issue.
iphonebrk, How old is your SIM card? Wich Company? How many K´s do you have in your SIM card?
As I have read in forums, here in spain, v1 SIM cards were sold till 2002 and they usually are 16K or 32K cards... that is, MOVISTAR, AIRTEL or AMENA cards only. If your card is newer than that or is from one of the new comapies, Orange, Vodafone or Yoigo, be sure that is not going to be V1, and therefore is not going to be crackeable.
Also take note that the error you see in the tutorial when WoroScan detects that it is not an V1 SIM card, is produced with the Infinity device. Who knows what error are you going to recive with your device.....
So... my question is: what happen if I've got a PC SC Card Reader instead a Phoenix Card Reader? Could I do something? Because I would like to extract my Ki number before buying something...
Hola Chus, I don't know if my SIM is a V1 card, but when I try to extract the KI number I don't get the error you can find in the tutorial. So I think it could be a V1 card... Now I'm looking for a VCP to "connect" my USB smart card reader via COM port. Thanks... I'm from Spain too ;-)
I've got a different smart card programmer than Infinity. I configure Woroscan as PC SC Card, it begins to scan (for an hour, more or less) and finally it says "No collisions found". Why? Whats the difference between select Phoenix Card or PC SC Card?
As none of my SIMS are V1: anyone interested in buying the USB Infinity from me? I'm selling at less than the incurred costs + delivering fee = still less than my costs. Hoping to make someone happy. Just post a message here.
Fantastico!
Works like a charm, on Belgium's Mobistar with Silvercard II and Infinity USB unlimited.
Fun cards DON'T work so stick to silver like in this excellent manual. Thanxs iC!
Cheers,
![OpenAI Releases GPT-4.5 [Video]](/images/news/96580/96580/96580-160.jpg "OpenAI Releases GPT-4.5 [Video]")
![Powerbeats Pro 2 Heart Rate Tracking Fails in Fitness Tests [Video]](/images/news/96573/96573/96573-160.jpg "Powerbeats Pro 2 Heart Rate Tracking Fails in Fitness Tests [Video]")
![Apple May Already Be Developing Next-Gen iPhone 17e [Rumor]](/images/news/96571/96571/96571-160.jpg "Apple May Already Be Developing Next-Gen iPhone 17e [Rumor]")
![Apple M4 Max 16-inch MacBook Pro (48GB RAM, 1TB SSD) On Sale for $435 Off [Deal]](/images/news/96576/96576/96576-160.jpg "Apple M4 Max 16-inch MacBook Pro (48GB RAM, 1TB SSD) On Sale for $435 Off [Deal]")
![New Apple M4 Mac Mini On Sale for $549 [Deal]](/images/news/96553/96553/96553-160.jpg "New Apple M4 Mac Mini On Sale for $549 [Deal]")
![Anker Announces New Sale: Up to 52% Off Smart Scales, Speakers, and More! [Deal]](/images/news/96542/96542/96542-160.jpg "Anker Announces New Sale: Up to 52% Off Smart Scales, Speakers, and More! [Deal]")
![Apple AirTag Four-Pack Hits New All-Time Low Price of $67.99 [Deal]](/images/news/96537/96537/96537-160.jpg "Apple AirTag Four-Pack Hits New All-Time Low Price of $67.99 [Deal]")
![Apple 13-inch M2 MacBook Air (16GB RAM) On Sale for $799 [Deal]](/images/news/96295/96295/96295-160.jpg "Apple 13-inch M2 MacBook Air (16GB RAM) On Sale for $799 [Deal]")
