Homebrew COMPLETED How pikabricker works

[midstor]

So, Pikabricker was malware that was made as a fake Pikachu rom.

I wrote a whole "writeup" on exactly how the malware works.

https://pastebin.com/6dNDSyZA - Full Pikabricker writeup

I hope this helps people who are making nsp scanners or something to see how they are made with better ease.


Thank you

NOTICE: THE INFORMATION IN THE PASTEBIN WAS FROM "OG" THE DEVELOPER OF THE BRICKWARE. PLEASE DO NOT CALL ME FAKE, ALL MY INFORMATION WAS FROM THE ORIGINAL DEVELOPER.

 

[Beerus]

hey this is neat nice job

 

[nWo]

Good job man.

 

[Rabbid4240]

Genius.

 

[WiiHomebrew+Snes]

thanks

 

[ccprodigy]

Pretty basic info

 

[jakkal]

1. (to those who have broken switches, try building a new nand with some helpful tools (idk which ones))

Next level genius stuff right here

 

[HtheB]

Why using pastebin and not just posting here directly...?

 

[SimonMKWii]

Your write up isn't correct in the slightest... not trying to be rude, but I don't think you know what the hell you're talking about.

 

[ry755]

Wow so detailed lol

 

[MopSec]

How is this a writeup?

 

[Waicol]

Sorry but reads like a Donald Trump tweet, no valuable info on it too.

 

[ressit]

no have backup how can fix this ??

 

[M7L7NK7]

no have backup how can fix this ??

try building a new nand with some helpful tools (idk which ones)

 

[Dungeonseeker]

I'll do a write-up of your write-up...


Your write-up is wrong.

 

[bundat]

Damn, when it said "writeup", I thought it was going to be all detailed technically, like go more into detail about which bytes (i.e. at what offsets) are overwritten with what values... (like how @Creatable said most of the bytes overwritten are "unused", as supposedly "Everything from offset 0x0270 to 0x09B0 is unused" and how there was a 1 out of 9 chance in guessing the value of one of the "not unused" parts that were overwritten), or maybe a decompilation of the binary or whatnot.

Also, @ the "i wrote this" on the first line.

And also @ the "idk which ones" on the last line.
Are there any other tools out there that can do that other than ChoiDujour? And I don't think you can even successfully do that with a corrupted PRODINFO, and no NAND backup and biskey backup...

Tbh, this is a whole bunch of... nothing. Sorry.

 

[a7mag3ddon]

Yup same here, i was looking for technical info as well.

 

[The Real Jdbye]

I thought it only corrupted BIS and didn't touch PRODINFO, although I'm not exactly sure what BIS is other than it has something to do with partitions...
That makes that guy an even bigger dick than I already thought he was.

 

[TamarindoJuice]

Really noice sir

 

[Reecey]

What we need is a little bat file that checks the nsp because who is going to trust any nsp from now on, trustable sources or not! The only source I trust now is a scene dump and that has to be sourced for me it may say scene dump on another forum but what’s stopping the uploaded from changing it you would never know the difference until you installed it. This is another reason why we need cdnsp back.