Dumping U8Plus Smartwatch ROM Via Vibration Motor

[Lee] continues with his exploration of the U8Plus (a cheap smartwatch). He hasn’t got it all cracked, yet, but he did manage to get a dump of the device’s ROM using an unusual method. At first, [Lee] thought that the JTAG interface (or, at least, the pins presumed to be the JTAG interface) would be a good way to explore the device. However, none of the people experimenting with the device have managed to get it to work.

Instead, [Lee] went through the serial bootloader and dumped the flash memory. He found out, though, that the bootloader refused to read the ROM area. It would, however, load and run a program. Unfortunately, no one has found how to access the UART device directly, but they have found how to drive the vibration motor.

[Lee] took off the vibration motor and used it as an output port for a simple program to dump the ROM. An Arduino picked up the data at a low baud rate and produced an output file. This should allow more understanding of how to drive the watch hardware.

We covered the initial teardown of this watch earlier this year. Of course, if you don’t want to reverse engineer a smartwatch, you could always build your own.

24 thoughts on “Dumping U8Plus Smartwatch ROM Via Vibration Motor

  1. China culture needs to change to a “share freely” culture. these devices would utterly destroy the big guys markets if the source code and API details for the hardware were released freely.

    They want to sell devices, selling millions more because some hackers out there wrote a better firmware is a huge advantage.

    1. I don’t see your point. The hacker market is small. Someone writing better firmware only improves the product if the manufacturer includes it in their product, or if the buyer is willing to load that firmware into the hardware they just bought. All the Chinese need to do is sell something of equal or better functionality (even if lower quality) at a lower price for the mass market.

  2. I do not think that “[Lee] took off the vibration motor and used it as an output port”, ‘it’ presumably referring to the motor itself. Is this why HaD is looking to hire new writers?

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s