Gaming Smash Ultimate C2C-version is bad. 25E version is not a "frankenbuild".

[EmulateLife]

I think my thread should be noted here https://gbatemp.net/threads/has-smash-25e-crashed-on-you.524387/#post-8399022

It seems most of the crashes happening in 25E are exfat users, 1 emunand user. FAT32 users (like me) no crashes.

 

[Rawrkanos]

If the installer is very poorly programmed and is, for some reason, opting to execute any code it sees while reading an NCA for installation (note: nothing is this poorly programmed in this decade, or last decade either really) that could be possible, but it would create lots of evidence. But that isn't possible here as there is no distinct executable in the modified NCAs. There's just garbage data that the installer would not know how to execute. The installer would need to be aware of the malicious file system structure, know how to read from it, read from it and execute the code inside. None of that is the case, and all of that would be trivial to recognize, catch and prove.

If you don't know, you don't know. Do not whip up fear regarding stuff you know nothing about. You need actual evidence of a malicious executable in order to raise the alarm.

The alarm I raised was "C2C is modified", then I speculated on what it might be. I made clear distinction between fact and speculation.

 

[blahblah]

The alarm I raised was "C2C is modified", then I speculated on what it might be. I made clear distinction between fact and speculation.

The hell it is. You have been whipping up fear of bricking all thread, despite having absolutely zero grasp on the technical facts at play here.

Don't speculate. Leave this stuff to the big boys. Both copies were pried apart and inspected by people with a clue before you even knew the game leaked. You didn't find something that others missed. You are just freaking people out for no valid reason.

If you want to make a thread about how the 25e version is untampered with and good while the C2C version has modified non-executable, non-game content but is also fine to play without risk, feel free. That's not what you made here.

 

[flatty69]

well i hope all you bois and girls or what ever you want to be called HAVE A NAND BACKUP cause i see alot off xmas or new years time bombs going off for some strange feeling as always Ill wait to see what happens , dont post that you havent been warned cause every where tells you make a nand backup

 

[blahblah]

well i hope all you bois and girls or what ever you want to be called HAVE A NAND BACKUP cause i see alot off xmas or new years time bombs going off for some strange feeling as always all wait to see what happens , dont post that you havent been warned cause every tells you make a nand backup

My eyes are rolling out of my head. There are no time bombs. The only guy making brickware at the moment, OG/Creatable, does not come anywhere close to being proficient enough to make such a thing. And that kind of act leaves lots of evidence that could and would be discovered by a moderately technical actor and brought to the public's attention.

Switch dumps are not black boxes. It is still possible to peer inside and spot malicious changes. Malicious changes, by their very nature, leave definitive evidence.

 

[EmulateLife]

Are these time bombs really possible? I'm seriously asking because I don't know. But are we just going by the guy who said they were possible that came out with the Pokemon bricker? Or do we know it's possible?

 

[Rawrkanos]

Both copies were pried apart and inspected by people with a clue

Seen literally zero evidence of that, given all the fearmongering against 25E that's gone on in this very forum. Hit me up with another joke, I might laugh this time.

 

[blahblah]

Are these time bombs really possible? I'm seriously asking because I don't know. But are we just going by the guy who said they were possible that came out with the Pokemon bricker? Or do we know it's possible?

Totally possible to do it on a technical level. Not really possible on a socio level to do and get away with long enough for a bomb of more than, say, an hour, not to get caught. And that's on a smaller game. Wouldn't even last an hour with a title with Smash, where there is lots of attention. Smart people would spot the hacked to shit executable and call it out.

--------------------- MERGED ---------------------------

Seen literally zero evidence of that, given all the fearmongering against 25E that's gone on in this very forum. Hit me up with another joke, I might laugh this time.

Why would you see evidence of that? It happened removed from the non-technical public. A normal part of a high-profile P2P leak. I was there, I was doing it with the others prior to the dumps being spread.

 

[EmulateLife]

I think we just need to settle this once and for all (even though it won't)

25E is fine, has some crashes most likely just on exFat
C2C is fine

No time bombs

end of discussion

 

[Rawrkanos]

Why would you see evidence of that? It happened removed from the non-technical public. I was there, I was doing it with the others prior to the dumps being spread.

Translation: "Trust me, I'm an expert. *gives no evidence*"

Sure.

 

[blahblah]

I think we just need to settle this once and for all (even though it won't)

25E is fine, has some crashes most likely just on exFat
C2C is fine

No time bombs

end of discussion

25e doesn't even really have crashes. Some users have a corrupt exFat file system on their mSD card and are encountering crashes on account of that. Smash is more sensitive to corrupt mSD than most games on account of the game contents being packed inside one giant file. If that file is slightly corrupt, the usual exFat corruption nonsense, you will crash semi-randomly.

If those users were to delete the installed game, backup their mSD, format and copy everything back & reinstall, all would be fine.

--------------------- MERGED ---------------------------

Translation: "Trust me, I'm an expert. *gives no evidence*"

Sure.

I think I've given quite a bit of evidence that I know what I speak, while you have shown exactly how unsuited you are. All the technically proficient people following along can tell who's who. I would also add that my posts make it super duper clear that I've pulled apart both copies/spoken to the people involved with both and know exactly what happened with both, but ok.

 

[Rawrkanos]

I would also add that my posts make it super duper clear that I've pulled apart both copies/spoken to the people involved with both and know exactly what happened with both, but ok.

No. They make it clear you claim to have done that or spoken to people. Nothing more. I actually provided evidence of pulling shit apart.

 

[blahblah]

No. They make it clear you claim to have done that or spoken to people. Nothing more. I actually provided evidence of pulling shit apart.

Every single thing I've said just happens to match the actual technical fact at hand. No one is that lucky. You've provided very funny screenshots of you looking at files and going nuts over differences, yes.

 

[Clydefrosch]

Totally possible to do it on a technical level. Not really possible on a socio level to do and get away with long enough for a bomb of more than, say, an hour, not to get caught. And that's on a smaller game. Wouldn't even last an hour with a title with Smash, where there is lots of attention. Smart people would spot the hacked to shit executable and call it out.

--------------------- MERGED ---------------------------



Why would you see evidence of that? It happened removed from the non-technical public. A normal part of a high-profile P2P leak. I was there, I was doing it with the others prior to the dumps being spread.

to be honest, if i had hidden brick code in any version, I'd tell everyone it can't do anything even if it were there too

 

[blahblah]

to be honest, if i had hidden brick code in any version, I'd tell everyone it can't do anything even if it were there too

But that kind of thinking is irrevelant, as the raw technical facts at play make the brick scenario impossible. Anyone can take a look at the exefs contents and the RomFS contents and compare to the other copy. Analysis of them will reveal they are both clean. Analysis of the executable will reveal a normal game executable, clean of eMMC write crap. The contents of the other NCAs will check out as well - no brick crap to be found.

And the technical facts at play prevent anything else from mattering. Technical fact trumps conspiratorial thinking.

 

[Clydefrosch]

But that kind of thinking is irrevelant, as the raw technical facts at play make the brick scenario impossible. Anyone can take a look at the exefs contents and the RomFS contents and compare to the other copy. Analysis of them will reveal they are both clean. The same is true of the contents of the other NCAs.

And the technical facts at play prevent anything else from mattering. Technical fact trumps conspiratorial thinking.

But as you said yourself, your audience here isn't really savvy enough to distinguish fact from fiction on any other level than what sounds reasonable (there is unneeded extra data that needn't be there) or if they trust whomever gives a certain kind of information.

Who are we to judge if you actually know what you're talking about or just making things up since you basically can in this Kindergarten of a hacking forum?
In that same vein, none of us are going to double check if the Screenshots from OP are actually real or made up.

And if im really honest, if I had a time bomb Bricker, I'd put it in two releases, making one seem obviously tampered with and have people bickering in favor of both so no one really knows what's what.
You know? We are prone to conspiracy thinking because none of us can honestly say if what you say is the absolute truth or not. And none of us want to bother with the potential consequences of betting on the wrong horse here.

 

[blahblah]

But as you said yourself, your audience here isn't really savvy enough to distinguish fact from fiction on any other level than what sounds reasonable (there is unneeded extra data that needn't be there) or if they trust whomever gives a certain kind of information.

Who are we to judge if you actually know what you're talking about or just making things up since you basically can in this Kindergarten of a hacking forum?
In that same vein, none of us are going to double check if the Screenshots from OP are actually real or made up.

And if im really honest, if I had a time bomb Bricker, I'd put it in two releases, making one seem obviously tampered with and have people bickering in favor of both so no one really knows what's what.
You know? We are prone to conspiracy thinking because none of us can honestly say if what you say is the absolute truth or not. And none of us want to bother with the potential consequences of betting on the wrong horse here.

Anyone who wants to - and plenty here are savvy enough to - can pull apart both dumps and verify what I am saying. That no one has revealed evidence* of brick crap, despite both dumps being out for over a day, speaks volumes. Brick stuff is effectively impossible to hide due to the nature of executables (and having a known-clean exeFS dump from a different source). Even with only one source, we’d still see the eMMC write crap when pulling apart the executable in IDA.

Conspiratorial thinking rots your brain. Seek truth. Operate inside the bounds of technical reality.

*Evidence being analysis of an executable showing major differences between the original executable - think obfuscated code - or eMMC write stuff. Evidence of a bricker, not evidence of differences between one NCA and another.

 

[JoeBloggs777]

My eyes are rolling out of my head. There are no time bombs. The only guy making brickware at the moment, OG/Creatable, does not come anywhere close to being proficient enough to make such a thing. And that kind of act leaves lots of evidence that could and would be discovered by a moderately technical actor and brought to the public's attention.

Switch dumps are not black boxes. It is still possible to peer inside and spot malicious changes. Malicious changes, by their very nature, leave definitive evidence.

also these 2 idiots would have had to get the dump before most people and modify it becuase if they didn't the brick free version(s) would have already spread to all the warez sites.

also why not replace this version with a scene dump one when they come out?, reducing any risks of bricking your switch.

 

[2Siralv]

Hashes for safe .nsp versions

MD5 = 25E8328F47D3A1EBFE5A4197814D9B62

SHA-1 = 1439B3A746543B55DD29E5B21747A7D76CDB7FE8

CRC32 = DDD3AC39

Hashes for safe .xci versions

MD5 = 9535cfffea0eac7a7bcadae91efbf64f

SHA-1 = DD55C317C0319396668F01CFFADCB99F2E0A667D

CRC32 = D8F74213

or

MD5 = 629b5537f0179b8ea3a2ce9bbe66ddf6

SHA-1 = 1882f9b6f0fcba0041fe2f97af0c438b9c6c260f

CRC32 = 5b97b994

NOT MY WORK COPIED but this should help maybe

--------------------- MERGED ---------------------------

i have 2 hashs the 25E8328F47D3A1EBFE5A4197814D9 AND THEN 3D9E1DD1052389F366FBEE48915A4BD
sha256
5361F1196FD101E0A5B7F509BD

--------------------- MERGED ---------------------------

the safe hash u listed the size is (14638711424 bytes)
but the other one i have is (14638708796 bytes)

 

[linuxares]

As long as it isn't a scene release don't trust any of them.

 

[ExploitJunkie]

Stupid people are all doomed anyways. You'll still do stupid shit...still have lack of a plausible discretion and still not have a nand backup on top of it. Keep on doing stupid shit.. let evolution weed you and your switches out I say.

 

[Clydefrosch]

Stupid people are all doomed anyways. You'll still do stupid shit...still have lack of a plausible discretion and still not have a nand backup on top of it. Keep on doing stupid shit.. let evolution weed you and your switches out I say.

stop being a bricker apologist.