supermysterychunkhax

3DS userland exploit for Pokemon Super Mystery Dungeon

Installation

supermysterychunkhax utilizes a savegame heap overflow in order to run *hax. To install such a savegame, an existing homebrew entrypoint such as browser hax, Smash Bros or Cubic Ninja is required.
To launch *hax, first make sure you download and extract the latest homebrew starter kit to the SD card.
To install the exploit to a Super Mystery Dungeon cartridge or digital download use the installer found here, extract it to your SD card and run it using the Homebrew Launcher. In the installer you will be prompted to select the appropriate version for the system and then the selected exploit version will be downloaded and installed.
Note that installing supermysterychunkhax will wipe any existing savegame data, and the original game will not be able to be used while supermysterychunkhax is installed. As such it is suggested that a savegame backup be made before installing. For uninstallation, see below.

Updating and Removal

supermysterychunkhax includes a payload which allows the *hax payload to be updated in the event that a system update is released, without requiring the installer to be run again. To access this functionality, hold SELECT while the game is loading and you will be taken to a menu. In this menu, select Update *hax payload and select the version of the *hax payload you wish to install, and then press A to have it downloaded and installed to the savegame.
In the event that you wish to return the cartridge to it's original cleared save state, you can also select Clear savegame and your save will be wiped.

NOTE: While supermysterychunkhax supports 11.1 and PASLR bypass, it can only be installed on 11.0 and below, and as such it is recommended to install a secondary such as steelhax in the event that the exploit does not work after updating to 11.1 or if the savegame becomes corrupted or deleted.

Credits

Exploit discovery (writeup here) and implementation by Shiny Quagsire
Region porting, installer and payload additions by Dazzozo
SALT greetz @ WulfyStylez
ironhax by smealum for ROP build system/payload base
sploit installer by smealum and yellows8

FAQ

What firmwares does this exploit work with?

This exploit works on firmwares >=9.9 for US and JPN, >=10.2 for EUR systems due to the games requiring cartridge
updates for these versions.

I tried lanching the installer but it gets stuck on a yellow screen!

The installer cannot currently run on 11.1 due to *hax not being able to take over games with PASLR.

I installed supermysterychunkhax but it crashes on loading.

First, make sure that the Select menu is able to be launched. If it cannot be pulled up, either the save is corrupt in some form,
or for 11.1, PASLR bypass may be failing. If the Select menu is able to be opened, update the otherapp payload and try again.
It can sometimes take 4-5 attempts before it succeeds (to be fixed soon, hopefully). If it still fails, contact Shiny Quagsire.