02-04-2022, 03:24 PM
i made a test setup, generating a little veracrypt container vc-1234 of just 1mb, all settings standard, pw is 1234
RESULT
vc-1234:1234
Session..........: hashcat
Status...........: Cracked
Hash.Mode........: 13721 (VeraCrypt SHA512 + XTS 512 bit)
Hash.Target......: vc-1234
RESULT
vc-1234:1234
Session..........: hashcat
Status...........: Cracked
Hash.Mode........: 13723 (VeraCrypt SHA512 + XTS 1536 bit)
Hash.Target......: vc-1234
so yeah, higher mode also succesfully decrypts lower ones AND hashcat accepts the full container (i assume it just reads the first 512 bytes) but i wouldnt take a bet that this also works with containers with some hundrets of gigabytes
you can try it for yourself, file https://ufile.io/9t7lz9v8
are we talking about a TRUECRYPT or VERACRYPT Container?
For Veracrypt Sha512 XTS 512 seems the default, the latest truecrypt 7.1a was using rimpemd-160 XTS 512
Code:
hashcat -m 13721 -S -O -a3 vc-1234 ?d?d?d?dvc-1234:1234
Session..........: hashcat
Status...........: Cracked
Hash.Mode........: 13721 (VeraCrypt SHA512 + XTS 512 bit)
Hash.Target......: vc-1234
Code:
hashcat -m 13723 -S -O -a3 vc-1234 ?d?d?d?dvc-1234:1234
Session..........: hashcat
Status...........: Cracked
Hash.Mode........: 13723 (VeraCrypt SHA512 + XTS 1536 bit)
Hash.Target......: vc-1234
so yeah, higher mode also succesfully decrypts lower ones AND hashcat accepts the full container (i assume it just reads the first 512 bytes) but i wouldnt take a bet that this also works with containers with some hundrets of gigabytes
you can try it for yourself, file https://ufile.io/9t7lz9v8
are we talking about a TRUECRYPT or VERACRYPT Container?
For Veracrypt Sha512 XTS 512 seems the default, the latest truecrypt 7.1a was using rimpemd-160 XTS 512