In fact, the work on this don’t come direclty from Orkid1818, but from zhangjiqi007 on a chineese board, credit for this goes to him. sorry for the confusion.

Also Members of Glitch360Team shared the Phison datasheet with several higher up members of the hacking community including zhangjiqi007 who deserves proper credit for finding the method to dump the nand extract the 64MB bootcode area and write the new information … This is a huge step for this console type … The datasheet is what allowed him to find what he needed to achieve this.

I have also been informed by Glitch360Team that they will be sharing some interesting findings regarding the Phison eMMC controller which they have made within the last few weeks.

All the info concerning this is avaliable on the chineese board A9VG.

In fact seems the guy did it the hardway :

1 : remove 4go nand from mainboard and dump it externaly
2 : use xor hack to build ecc
3 : flash it in a 16mo nand
4 : solder the 16mo nand to the xbox motherboard (Changing something on the resistor configuration on the Corona board to make it works)
5 : grab keys

So there is still no way to dump and decrypt the nand direclty from the nand, hope the new ‘leaked’ datasheet will help
Thx to tuxuser for the highlight

Orkid1818, dayton360mods.com‘s member, share with us today some proof of his works on corona V2. Basicly he was able to dump the nand of his Corona V2 (4Go xbox with phison’s eMMC chip linked to the nand) and was able to launch XeLL in order to grab CPUkey.

Here you can see as proof the nand dump decrypted :

Here is a pastbin of XeLL output, you can see that the nand isn’t properly recognize.

We can say from that
– Magic bytes are OK
– Nand dump is 66 Mo (like the data part for Jasper BB nand)
– the CPUKey decrypt the KV properly and display console info as corona
– Bootloader are the one from corona
So it’s definilty legit

Odd stuff, the nanddump don’t contain the spare data (info about the pages of the nand), probably because of the phison chip … maybe they are in it? Time will tell.

But every good news comes with a bad one, orkid1818 is Asian and we are meeting to trouble to exchange technical info about how he manages to do it but time will help =)

More news soon.

Thx to Juggahax0r, dayton360mods.com‘s admin for the news tips.
You can also check his Facebook page there.
Thx also to Swizzy for his clever help as usual.