hashcat Forum Deprecated; Previous versions Old oclHashcat Support v
Help about office documents

Threaded Mode
Help about office documents
emre32 Offline
Junior Member
**
Posts: 4
Threads: 2
Joined: Feb 2015
#1
02-09-2015, 01:19 PM (This post was last modified: 02-09-2015, 01:33 PM by philsmd.)
Hello everyone i need your help
I want to attack a office 2007 document with oclhashcat
But i don't know how can i do
Is there anyone help about that ?
Best Regards
Find
philsmd Offline
I'm phil
******
Posts: 2,268
Threads: 16
Joined: Feb 2013
#2
02-09-2015, 03:40 PM
The general procedure is to use something like: office2hashcat.py (e.g. office2hashcat ) to extract the information needed from the office document
and
after that you run it with the correct hash type (-m 9400 = Office 2007 according to --help and https://hashcat.net/wiki/doku.php?id=example_hashes ).

If this (first step) was not the problem in your case, you need to give us more details what the problem (or maybe error message) is.
Find
emre32 Offline
Junior Member
**
Posts: 4
Threads: 2
Joined: Feb 2015
#3
02-17-2015, 10:49 AM
Hi thanks for your reply
I used office2hashcat.py and created hash information about office document and also used flag which belongs to office documents -m 9400=2007 9500=2010 9600=2013.
My commands are below :
cudaHashcat64.exe -a 0 -m 9400 -o cracked.txt hash.txt wordlist.txt when i used these command there is an error which is " No hash loaded "
where is my fault ?
Kind Regards
Find
philsmd Offline
I'm phil
******
Posts: 2,268
Threads: 16
Joined: Feb 2013
#4
02-17-2015, 01:02 PM (This post was last modified: 02-17-2015, 01:03 PM by philsmd.)
Please have a look at this wiki page: https://hashcat.net/wiki/doku.php?id=example_hashes

Inside the file hash.txt (for hash type -m 9400) the hash lines must be exactly like this:
$office$*2007*20*128*16*.....

Please try to make a test with the example hash (see wiki link above, search for "Office 2007").
Are you able to load/crack this specific test hash ?

Also note that there should be no extra white spaces (for instance " ") after the actual hash etc

Reminder: do not post hashes here as a response to this post (it is against the forum rules ... instead try to understand what exactly is different with your hashes and if the examples work).

Furthermore, if the hash.txt files was not empty, normally you would get a warning before you see the "No hash loaded" messages... if this is the case, read it carefully and try to react according to the warning(s)
Find
emre32 Offline
Junior Member
**
Posts: 4
Threads: 2
Joined: Feb 2015
#5
02-17-2015, 02:54 PM
Thank you very much
Now İt worked. Smile
Could you explain me how to attack with brute force to office documents ?
Best Regards
Find
atom Offline
Administrator
*******
Posts: 5,185
Threads: 230
Joined: Apr 2010
#6
02-18-2015, 05:27 PM
Please read this thread: https://hashcat.net/forum/thread-3665.html
Website Find