Posts: 2
Threads: 1
Joined: Nov 2024
I've been following some tutorials on how to get the password from password protected winrar archives.
I'm a total newbie so it took me some time to even get things started.
It's my own rar archive but its old and I'm pretty sure I had some simple password for it.
So I used John the Ripper to get the hash (I think its called). But the problem is that the hash was pages long? Not just a few lines as in the tutorials. So after some reading I think I got what I need, only the most important line to use.
But it has asterisks in it (*), seven of them. Is that normal or am I doing something wrong?
Posts: 170
Threads: 2
Joined: Apr 2021
Yep, that's perfectly normal. Archive hashes use the asterisk to delimit different fields and often the size of the hash scales with how long the archive is, so if you have a large archive, the hash will be bigger. There are some examples here:
https://hashcat.net/wiki/doku.php?id=example_hashes
Posts: 2
Threads: 1
Joined: Nov 2024
11-28-2024, 07:37 PM
(This post was last modified: 11-28-2024, 07:40 PM by Burtie.)
(11-28-2024, 07:00 PM)penguinkeeper Wrote: Yep, that's perfectly normal. Archive hashes use the asterisk to delimit different fields and often the size of the hash scales with how long the archive is, so if you have a large archive, the hash will be bigger. There are some examples here:
https://hashcat.net/wiki/doku.php?id=example_hashes
Thank you for replying.
In my case the hash starts with "$RAR3$*1*" and as I mentioned the hash is huge (367MB).
output.txt takes over a minute to scroll from top to bottom
It's not a locked archive, I can open it but need the password to extract what's in it.
I'm not sure what part of the hash I need to go further and I guess I'm not supposed to use the massive content in output.txt?
Posts: 39
Threads: 12
Joined: Jan 2015
(11-28-2024, 07:37 PM)Burtie Wrote: (11-28-2024, 07:00 PM)penguinkeeper Wrote: Yep, that's perfectly normal. Archive hashes use the asterisk to delimit different fields and often the size of the hash scales with how long the archive is, so if you have a large archive, the hash will be bigger. There are some examples here:
https://hashcat.net/wiki/doku.php?id=example_hashes
Thank you for replying.
In my case the hash starts with "$RAR3$*1*" and as I mentioned the hash is huge (367MB).
output.txt takes over a minute to scroll from top to bottom
It's not a locked archive, I can open it but need the password to extract what's in it.
I'm not sure what part of the hash I need to go further and I guess I'm not supposed to use the massive content in output.txt?
I can try to find the password if you give me a link to the archive in a private message, and if there is additional information about the password
