03-11-2019, 11:32 PM
Thank you for the replays.
I used PIM 2000 and 1337.
Now I created two additional partition, one with PIM 500 and one with a single keyfile. With the same procedure as last time I checked all six partition against "--veracrypt-pim=500" and "--veracrypt-keyfiles=[correct file]". And only the password of the partition without pim and without keyfile could be reconstructed.
And just to be absolutely sure, I modified the arrangement of the parameter, without luck.
Should hashcat print that it use a different pim or used keyfiles? I could not see anything like this.
The parameter name should be correct because hashcat complains about "--veracryptsdf-pim=500" but not with the parameter I used.
I used PIM 2000 and 1337.
Now I created two additional partition, one with PIM 500 and one with a single keyfile. With the same procedure as last time I checked all six partition against "--veracrypt-pim=500" and "--veracrypt-keyfiles=[correct file]". And only the password of the partition without pim and without keyfile could be reconstructed.
And just to be absolutely sure, I modified the arrangement of the parameter, without luck.
Should hashcat print that it use a different pim or used keyfiles? I could not see anything like this.
The parameter name should be correct because hashcat complains about "--veracryptsdf-pim=500" but not with the parameter I used.