QcomView Utility

Currently there is a problem with some browsers identifying this as a virus. VirusTotal reports 5/93 as a virus. The file has been confirmed by us as clean. If you trust us, you can bypass the warning. We will attempt to address the false positives. May 8, 2024

The QcomView Utility is a Win32 utility for analyzing Qualcomm signed executables. That includes xbl, abl, cmnlib, cmnlib64, Firehose loaders and many lower profile system partitions.

Usage: qcomview /m list models /h verify hashes /hw write hashes /c dump certificates, /c0 is just root /p get SHA256 and/or SHA384 hash of root certificate /r list restrictions /a list memory address ranges /u unsign by deleting sig & certs /gn group hashes to n hexits /s search subdirectories /v verbose

The models option will list Qualcomm model names that are found by heuristics. The HWIDs are also listed if available. Low numbers from 000340e1 to 000440e1 appear to be unreliable.

The hashes option will verify the program hashes. This works with SHA224, SHA256, SHA384, SHA512 hashes.

The certificates option will dump out the ASN1 of the certificate chains.

The pkhash option will print the SHA256 and SHA384 of the root certificate.

The restrictions option will attempt to find Motorola "range restricted" regions.

The unsign option is only useful when a patched, signed loader will be distributed for use where Secure Boot is not enabled. It avoids confusion by dissociating itself from the original signer since the signing is no longer valid.

Download qcomview.exe, the QcomView utility.