01-13-2019, 09:06 AM
Hi everyone,
we have been hit with a ransomware attack where essentially every server file was encrypted with veracrypt and an added file extension of [email protected]
Obviously I am far from happy - I have fault found everything down to clutching at straws and having the opportunity to learn some new skills with hashcat.
I must say that the wiki articles are excellent & noted all the veracrypt hashtypes 13711, 12, 13, 13721,22,23,13731,32,33,13751,52,53,13771,72,73
My first attempt with hashcat is below
hashcat -a 3 -m 13773 Backup.bat.[[email protected]].adobe -o recovered.txt --force
Can someone please run a eye over my first attempt and point me in the direction to where I can make it better??
thanks in advance, I will keep reading the wiki's and hope for a reply.
Jase
we have been hit with a ransomware attack where essentially every server file was encrypted with veracrypt and an added file extension of [email protected]
Obviously I am far from happy - I have fault found everything down to clutching at straws and having the opportunity to learn some new skills with hashcat.
I must say that the wiki articles are excellent & noted all the veracrypt hashtypes 13711, 12, 13, 13721,22,23,13731,32,33,13751,52,53,13771,72,73
My first attempt with hashcat is below
hashcat -a 3 -m 13773 Backup.bat.[[email protected]].adobe -o recovered.txt --force
Can someone please run a eye over my first attempt and point me in the direction to where I can make it better??
thanks in advance, I will keep reading the wiki's and hope for a reply.
Jase