08-04-2021, 08:46 AM
According to the forum rules, you are not allowed to post hashes here: https://hashcat.net/forum/announcement-2.html
It's even worse that you didn't mention where this example comes from and what the password is etc... Doing stuff like this can lead to a permanent ban of your account, so you shouldn't do this.
The JSON file does already contain base64 encoded "values"/fields. That means that the IV of ejhZ.... is already in base64 format, the salt of jgW3.... is already base64 encoded and the data part wM+C... is already a base64 string... you don't need to manipulate, nor encode, them again and again (I only said it's base64 because other hashes that hashcat supports are sometimes hexadecimal instead of base64... that was just a clarification of the format, not really a instruction that you need to manipulate them).
So the hash would need to look something like this (with the ... of course replaced with the remaining part of that JSON value):
Please make sure you replace the fields with the full string (again, it's not allowed to post non-masked hashes in this forum)
It's even worse that you didn't mention where this example comes from and what the password is etc... Doing stuff like this can lead to a permanent ban of your account, so you shouldn't do this.
The JSON file does already contain base64 encoded "values"/fields. That means that the IV of ejhZ.... is already in base64 format, the salt of jgW3.... is already base64 encoded and the data part wM+C... is already a base64 string... you don't need to manipulate, nor encode, them again and again (I only said it's base64 because other hashes that hashcat supports are sometimes hexadecimal instead of base64... that was just a clarification of the format, not really a instruction that you need to manipulate them).
So the hash would need to look something like this (with the ... of course replaced with the remaining part of that JSON value):
Code:
$metamask$jgW3...$ejhZ....$wM+C...
Please make sure you replace the fields with the full string (again, it's not allowed to post non-masked hashes in this forum)