Hacking - New Super Mario Bros

[dontay0100]

Well I'm sure everyone is aware that the new super mario bros that will be releasing on August 19th is also being released in a downloadable form... I have a good feeling that once we have a downloaded 3ds game it will open up new ways to decrypt and extract files that will lead a way to hack 3d mode... all we can do is dream lol

 

[Tom Bombadildo]

No. No it won't. Unless Nintendo accidentally includes a giant sign that says "HEY GUYS HERE ARE ALL OF THE KEYS YOU NEED! HAVE FUN!" that won't happen.

 

[dontay0100]

Nothing will ever come with negativity

 

[PaulAldrich]

he is right tho

 

[Rydian]

They've had eshop/download-only games for a while now...

This is just the first of it's type in the fact that it's dual retail and eshop.

 

[dontay0100]

Exactly its the first retail to be released as a download... something new to compare with the ripped roms!!

 

[Rydian]

Exactly its the first retail to be released as a download... something new to compare with the ripped roms!!

The downloads are encrypted on the SD with a unique key to that system (from what I've seen). Even then, the ROM of the cart will not be the same exact program that's downloaded, as the downloaded version will have been modified to run off of SD and work in the eshop and crap.

 

[3DSGuy]

Exactly its the first retail to be released as a download... something new to compare with the ripped roms!!

The downloads are encrypted on the SD with a unique key to that system (from what I've seen). Even then, the ROM of the cart will not be the same exact program that's downloaded, as the downloaded version will have been modified to run off of SD and work in the eshop and crap.

Actually, the CXI inside the game ROMs don't have to be modified to be installed to the SD Card. (Well at least for dev units they don't have to be)

 

[easycrashing]

may buy the system eventually (when it gets cheaper) just for this game, loved the old mario (nes) games - minus 2.

 

[Rydian]

Exactly its the first retail to be released as a download... something new to compare with the ripped roms!!

The downloads are encrypted on the SD with a unique key to that system (from what I've seen). Even then, the ROM of the cart will not be the same exact program that's downloaded, as the downloaded version will have been modified to run off of SD and work in the eshop and crap.

Actually, the CXI inside the game ROMs don't have to be modified to be installed to the SD Card. (Well at least for dev units they don't have to be)

Still, it's not just the CXI that's encrypted but the entirety of the data as a whole, so having the cart ROM won't help in getting at the actual SD contents, right?

 

[3DSGuy]

Exactly its the first retail to be released as a download... something new to compare with the ripped roms!!

The downloads are encrypted on the SD with a unique key to that system (from what I've seen). Even then, the ROM of the cart will not be the same exact program that's downloaded, as the downloaded version will have been modified to run off of SD and work in the eshop and crap.

Actually, the CXI inside the game ROMs don't have to be modified to be installed to the SD Card. (Well at least for dev units they don't have to be)

Still, it's not just the CXI that's encrypted but the entirety of the data as a whole, so having the cart ROM won't help in getting at the actual SD contents, right?

Well ROM files don't contain CXI/CFA files entirely encrypted, only the contents of the CXI/CFA files are encrypted. Unlike the SD Card where the .APP files (Encrypted CXI/CFA files) are entirely encrypted with a per-console key(on top of the encryption of the CXI/CFA content). So having the ROM would provide a copy of the decrypted form of .APP data on the SD Card, but won't AFAIK help you decrypt the .APP data on the SD Card. But in saying that the CXI/CFA files don't have to be modified to be installed to the SD Card, Nintendo could change them for other reasons, like for instance changing the product code because it's a "retail digital download" .

 

[Vampire Lied]

The Rom and eshop versions won't be identical from the start seeing as the eshop version will contain extra data for the digital instruction manual. That in itself is extra data that could get confused with anything useful I would think. Then again, I admittedly don't know much at all about this stuff other than it probably won't work

 

[3DSGuy]

The Rom and eshop versions won't be identical from the start seeing as the eshop version will contain extra data for the digital instruction manual. That in itself is extra data that could get confused with anything useful I would think. Then again, I admittedly don't know much at all about this stuff other than it probably won't work

Umm no, both can have (and probably will have) Digital Instruction manuals

For SD Card apps:

"XXXXXXXX.app" - (There is no pattern to the file name) These files are NCCH files, where the entire file is encrypted with a per-console key. There can be more than one NCCH in this directory, as seen with .CCI files, the game executable (CXI) can be accompanied with additional non-executable NCCH files (CFA) such as the game manual and DLP Child containers.

Source

For Game Roms:

The second partition(NCCH 1) contains the game "Manual"(title ID for the .CFA containing the Manual always starts with '0005')

Source

My point being Nintendo doesn't have to modify the CXI/CFA inside a game ROM (CCI) to prepare it for being an installable title.

 

[3DSGuy]

But there is a way to check if the eShop version and retail cartridge version are the same. By checking the hashes of course. All downloadable 3DS titles are accompanied by a TMD which contains a SHA-256 hash of the decrypted content. Now that the EUR ROM for this game has been dumped, it is now possible to compare.

Using 3DSExplorer, you can extract the Game NCCH and the Electronic Manual NCCH from the ROM. Then generate a SHA-256 hash for each NCCH files and compare it to these hashes taken from the title's TMD on Nintendo's CDN:

Game NCCH (339 MB) : CFB606E95DA6B4951FC5F1B4D14DA5E78CEC2515C372A178978F651D032249EB
Electronic Manual NCCH (2.67 MB) : 59B436E8520C710BD843CCB6B6ED25B0FE840DF8A64EE408920CC003926ED0F2

If they match, it is definitive proof that NCCH files do not have to be modified, to be run off the SD Card for retail units.

 

[3DSGuy]

But there is a way to check if the eShop version and retail cartridge version are the same. By checking the hashes of course. All downloadable 3DS titles are accompanied by a TMD which contains a SHA-256 hash of the decrypted content. Now that the EUR ROM for this game has been dumped, it is now possible to compare.

Using 3DSExplorer, you can extract the Game NCCH and the Electronic Manual NCCH from the ROM. Then generate a SHA-256 hash for each NCCH files and compare it to these hashes taken from the title's TMD on Nintendo's CDN:

Game NCCH (339 MB) : CFB606E95DA6B4951FC5F1B4D14DA5E78CEC2515C372A178978F651D032249EB
Electronic Manual NCCH (2.67 MB) : 59B436E8520C710BD843CCB6B6ED25B0FE840DF8A64EE408920CC003926ED0F2

If they match, it is definitive proof that NCCH files do not have to be modified, to be run off the SD Card for retail units.

Well we have some results (now that I got my hands on the ROM), and it is mixed.

The Game CXI is different, but the manual isn't.

 

[Rydian]

Wouldn't it just be non-executable data anyways, and thus no need to be signed as it's a (packed) resource?

 

[3DSGuy]

Wouldn't it just be non-executable data anyways, and thus no need to be signed as it's a (packed) resource?

No it's still signed, see CFA. It's a NCCH file like CXI. But also because the Manual CFA was the same for both cartridge and digital download, this is proof that the NCCH key for eShop and game card titles is the same for retail units.

 

[Rydian]

Damn, they seem to have planned a lot harder than we thought.