Pages:
Author

Topic: 1 BTC reward - page 2. (Read 690 times)

legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
October 06, 2024, 11:26:07 PM
#35
No, I'm going to auction it off

If you get the file and the money starts moving, I expect 9 BTC
nc50lc (fee 10%, bid 0)
Thank you but I'll pass if it's the wallet.dat file.

And once you decided to pass along the wallet.dat file to others, please consider sending only the encrypted mkey alongside with the necessary data to unencrypt it with the password.
Just follow the instructions given by PowerGlove (although you'll have to use a tool to display the wallet.dat's contents in hex)

Or do you have an air-gap machine? (Wikipedia: air-gap)
If so, you can safely extract the encrypted mkey (famously called "hash") with the open-source tools suggested by others without the worry of it being malicious since it wont be able to transmit data outside the machine in case of the worst case scenario.
hero member
Activity: 714
Merit: 1010
Crypto Swap Exchange
October 06, 2024, 02:52:40 PM
#34
~~~
Very nice and informative explanation, PowerGlove. I would give you some more merits for it if only I had more sMerits left (I prefer to keep at least about 10+ or so to be able to give them when I stumble over really merit worthy posts, um, like yours).

Anyway, you're probably one of few with highest merits/posts ratio. Keep up your excellent contributions!

I was always interested how this works. AFAIR, you can do the exhaustive hash crunching with tools like Hashcat and John the Ripper. They have it as a defined method of cracking implemented. I read about it, but never used it myself so far (didn't have to). So it's really nice to have some details explained by you.

If I don't mix things up, both tools had some tool scripts to extract the data portion (encrypted mkey, salt, iteration count) you've described. I will remember your post to cross-check, once I will have to tackle such a cracking problem.

BTW, great suggestion to always check with a known challenge if a cracking procedure will actually be able to find a correct result! You don't want to spend time and energy with a flawed cracking recipe or the wrong (buggy) tools.


It's up to OP what he makes of it.
hero member
Activity: 510
Merit: 4005
October 06, 2024, 01:15:04 PM
#33
Maybe I'm too trusting, but I always try to give people (that I don't know) the benefit of the doubt, and try to read their posts in the best possible light before jumping to conclusions...

In case OP really is just a super skittish person that's genuinely looking for help, I spent a little time on this, and came up with the following:

Like other people have pointed out, it's safe to share just the "mkey" value from an encrypted wallet file. The thing is, OP doesn't want to download or run anything, which makes it really tough to guide them. So, I created a test wallet using the closest version (0.12.1) of Bitcoin that I could find (closest to the date that the address posted here was funded, that is), and then went through the source code for both that and Berkeley DB, to try to figure out exactly how things were laid out back then.

I came up with a really tidy/short Python script to pull out the relevant data (the encrypted key, the salt, and the iteration count). It's so short, in fact, that the sequence can actually be performed manually.

Basically, you can open up the wallet file with anything that can display hex (like Sublime Text), and then search for the following 4-byte pattern: 4300 0130. Then, you copy those four bytes along with the 66 bytes that follow it. Using the test wallet I created, for me that comes out like this (spaces removed):

43000130ac71182a748152bb788fb9deb11f2f5a55f5e848d66586747cc000826d4c0c350032153d50cbf924a2ac1dc5f6279436089ca0271b64c0e66f00000000c6fe040000

The blue part is the 48-byte encrypted master key (it's 48 bytes because 16 bytes of padding are appended to the 32-byte key before it's encrypted). The green part is the 8-byte salt (needed for the key derivation function to work). The orange part is the 4-byte (little-endian) iteration count (also needed for the key derivation function). If the uncolored parts differ from the above, then you're probably not at the correct offset and should skip to the next match (or, your file was created by a build of Bitcoin that differs in some way from the one that I'm basing all of this on).

The first 16 bytes of the encrypted master key aren't necessary to brute-force the passphrase (just the last half of the encrypted key, and the encrypted padding will suffice), so those bytes can be zeroed before sharing, like this (ignore the bolding and the underlining for now):

430001300000000000000000000000000000000055f5e848d66586747cc000826d4c0c350032153d50cbf924a2ac1dc5f6279436089ca0271b64c0e66f00000000c6fe040000

If OP shares the above bytes from their own file, then people (me included) can try to help them find the correct passphrase without them actually risking anything at all.

That procedure works as follows:

(1) Take a candidate passphrase, and after appending the salt to it, hash it (with SHA-512) a certain number of times (the iteration count, which is 327366 in the above extract).

(2) Take the first 32 bytes of the 64-byte iterated-hashing result and then use that as the key to attempt decryption (with AES-256) of the last 16 bytes of the 48-byte encrypted master key (the bolded part).

(3) Take the 16 potentially-decrypted bytes from the previous step and then do a bitwise exclusive-or on them with the 16 underlined bytes.

(4) If the result is 16 bytes all with the value 16 (10 in hex), then you've probably (with the odds astronomically in your favor) found the correct passphrase.

(If anyone tries to implement the above procedure, then before throwing joules at a search for OP's passphrase, I suggest shaking the bugs out of your implementation by first testing it against my example extract: the passphrase for that is "MasterExploder".)
legendary
Activity: 3472
Merit: 10611
October 06, 2024, 12:05:32 AM
#32
There was another wallet if that helps
138PicFJhWSmD42zyHpVLBf2N2MDK5FcxS
And I moved the coins around the same time I created my first post here
I still have it
The first post you created here was the one below and even though the address in that post started with "13" as well but it was an entirely different address. It also contained 10 bitcoins not 0.04 like the one you are now claiming you have moved.
~
13zEUPdpCDT3JGqv4o61vXQpgWWdxMEZeX
~
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
October 05, 2024, 11:16:57 PM
#31
He will guide you, he doesn't ask for your wallet.dat file usually, he will assist you to extract the little data portion of the encrypted encryption key needed to find the wallet's encryption secret (no private key is exposed or compromised by this little data).
That's exactly what people tell me
That's because it's the safest way to ask someone to bruteforce a wallet.dat's mkey encryption passphrase. (a.k.a the wallet's password)
And it's verified to be safe by people who know how it works.

You can research how the wallet is encrypted here: https://en.bitcoin.it/wiki/Wallet_encryption
Then double-check what the article said in the code: /src/wallet/crypter.cpp and /src/wallet/crypter.h
(open-source is amazing isn't it?)

Basically, what you'll give is just an encrypted "master key" ("mkey", not a master private key) which is encrypted with your password.
The "wallet recovery service" will be able to decrypt it once he stumbled upon the correct password
But since it's just a decrypted master key, it's useless without the actual wallet.dat file where the private keys that are encrypted with that mkey.
full member
Activity: 147
Merit: 83
aliveNFT.github.io | Track your love.
October 05, 2024, 01:18:55 PM
#30
Hey Bitcointalk!

HFRFOKi0BCWlZx/Y9uMO3YlHceKMkCkOrxPGPpKz9PK9GyVluSpVvlTsMh/ABOaAd5ijY9R9cHiKASPFrvL5DCk=
Verified
But it doesn't change anything, lol
Come on, contact someone, there are plenty of knowledgeable and talented people here.
I can't wait, I want to know how it's all going to end, I have impatience syndrome.
newbie
Activity: 10
Merit: 11
October 05, 2024, 01:15:40 PM
#29
138PicFJhWSmD42zyHpVLBf2N2MDK5FcxS
I also don't believe that you use fake addresses, but your behavior is strange, pull yourself together.


Hey Bitcointalk!

HFRFOKi0BCWlZx/Y9uMO3YlHceKMkCkOrxPGPpKz9PK9GyVluSpVvlTsMh/ABOaAd5ijY9R9cHiKASPFrvL5DCk=
full member
Activity: 147
Merit: 83
aliveNFT.github.io | Track your love.
October 05, 2024, 01:14:15 PM
#28
He will guide you, he doesn't ask for your wallet.dat file usually, he will assist you to extract the little data portion of the encrypted encryption key needed to find the wallet's encryption secret (no private key is exposed or compromised by this little data).

That's exactly what people tell me

Well, even if the highest bid is zero, I'm going to pick someone anyway eventually. So it's not exactly like selling a fake wallet

You ignore all the intelligible answers in this thread, arrange auctions, behave strangely, do not provide any evidence (signing the bitcoin wallet) that you sent.

138PicFJhWSmD42zyHpVLBf2N2MDK5FcxS
I also don't believe that you use fake addresses, but your behavior is strange, pull yourself together.
newbie
Activity: 10
Merit: 11
October 05, 2024, 01:07:09 PM
#27
He will guide you, he doesn't ask for your wallet.dat file usually, he will assist you to extract the little data portion of the encrypted encryption key needed to find the wallet's encryption secret (no private key is exposed or compromised by this little data).

That's exactly what people tell me

Well, even if the highest bid is zero, I'm going to pick someone anyway eventually. So it's not exactly like selling a fake wallet
hero member
Activity: 714
Merit: 1010
Crypto Swap Exchange
October 05, 2024, 12:07:53 PM
#26
No, I'm going to auction it off

If you get the file and the money starts moving, I expect 9 BTC
Likely 100% of sold wallet.dat files are fake and rigged files that appear to control coins when in fact there are real private keys in those wallets. There are still some stupids that pay money for such files (do they?), so how do you want to convince someone that a) your wallet.dat is real and genuine and b) your clues to the wallet encryption secret are in fact usable and valid to have a chance to find it?

I would be surprised if someone offers you more than maybe 0.01BTC for this gamble. LOL and on top you expect to get 9BTC when a cracker succeeds. Just why would a cracker feel obligated to pay you that amount? Sign a contract, yeah, sure, good luck...

Always somewhat interesting with what ideas some come up. Do what you want if you're the only heir.

I don't get it, why e.g. you don't want to contact Dave from walletrecoveryservices. He's a professional, he has the gear and knowledge to brute-force wallet encryption secrets. He will guide you, he doesn't ask for your wallet.dat file usually, he will assist you to extract the little data portion of the encrypted encryption key needed to find the wallet's encryption secret (no private key is exposed or compromised by this little data). You don't have to pay anything upfront to Dave.

Our standard fee is 20% of the value of the wallet, only if we are successful. Zero otherwise

If your wallet is valued over $100K USD, then we offer a lower fee of 15% for an initial phase of tests.
(generally takes around a week).

Limited Wallet Information

Background

This page describes how to get limited Bitcoin-Core (or Litecoin / Dogecoin / etc.) Wallet Information for Wallet Recovery Services (so that we cannot steal your bitcoins even if the wallet password is found)
...

Disclaimer: I'm not part of Dave's business and I don't have any other affiliation with it.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
October 05, 2024, 09:57:15 AM
#25
No, I'm going to auction it off
So that's your angle: selling a fake wallet, just like many others have been doing for years.
full member
Activity: 147
Merit: 83
aliveNFT.github.io | Track your love.
October 05, 2024, 08:52:41 AM
#24
There was another wallet if that helps

138PicFJhWSmD42zyHpVLBf2N2MDK5FcxS

And I moved the coins around the same time I created my first post here

I still have it


This tx doesn't proof anything, you better sign this wallet now. I can find the transaction at the time then I took a shit today and say I did it.
But this will not help you in any way to find a person who agrees to your terms.
Take an offline computer, call a knowledgeable person, do as he tells you and solve your problem, and do not invent useless and risky auctions here.
newbie
Activity: 10
Merit: 11
October 05, 2024, 08:37:06 AM
#23
There was another wallet if that helps

138PicFJhWSmD42zyHpVLBf2N2MDK5FcxS

And I moved the coins around the same time I created my first post here

I still have it
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
October 05, 2024, 05:27:30 AM
#22
I'm pretty confident I could do it.
Yep. But OP doesn't want to download anything. And since I don't expect him to write his own software, he'll just keep opening a new topic every year.

No, I'm going to auction it off

If you get the file and the money starts moving, I expect 9 BTC

If they never move, I keep the bid


At this point, i only can say good luck finding people who could trust you and agree to such terms. There are too many fake wallet.dat file being sold on internet.
full member
Activity: 147
Merit: 83
aliveNFT.github.io | Track your love.
October 05, 2024, 12:26:16 AM
#21

No, I'm going to auction it off

If you get the file and the money starts moving, I expect 9 BTC

If they never move, I keep the bid


An auction? Why complicate everything, there are at least 2-3 people on the forum who can figure it out and help you, and in all seriousness you can trust them with your life.
Just stop being a stubborn pussy and take action, the years go by, you get old and bitcoin still stays there. You could get hit by a car tomorrow, you know?
Ask for help and we will help you choose a few trusted people here who will help you.
newbie
Activity: 10
Merit: 11
October 04, 2024, 04:41:15 PM
#20
I'm pretty confident I could do it.
Yep. But OP doesn't want to download anything. And since I don't expect him to write his own software, he'll just keep opening a new topic every year.

No, I'm going to auction it off

If you get the file and the money starts moving, I expect 9 BTC

If they never move, I keep the bid
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
October 04, 2024, 10:54:30 AM
#19
I'm pretty confident I could do it.
Yep. But OP doesn't want to download anything. And since I don't expect him to write his own software, he'll just keep opening a new topic every year.

@OP: get an offline computer if you're afraid of malware stealing your Bitcoin.
hero member
Activity: 714
Merit: 1010
Crypto Swap Exchange
October 04, 2024, 10:43:58 AM
#18
Counting from year 0...2025 with 366 days per year, I'm to lazy to properly account leap years, it's 741,150 possible dates (including incorrect February 29th in non-leap years) in one particular style of formatting THE DATE.

With the right tools it's a piece of cake for those who know how to do it, to try every possible date with some common formatting. Who cares if you need a few hours for one style of formatting to exhaust every possible date? OP could try them all, if he wanted.

He could even first cut corners and try first only every possible date in the intervall 1900...2025 for all date formatting styles he can come up with. That's just 45,750 dates per style. That's what I would do first.

I'm sure some knowledgable members here would and could give OP enough advise how to automate an exhaustive search.

I'm pretty confident I could do it. Might need me some read-up as it's a long time ago I last did a wallet cracking recovery (someone in another forum forgot his spending PIN for the Schildbach Bitcoin wallet for Android, didn't even remember the length of the PIN correctly, so I worked my way up from 4-digit and higher; it took me some days to finally find the correct PIN as I didn't want to use heavy energy-demanding gear for the task. I wasn't too sure if the crack attempt would finally yield a positive hit. It felt good when it did.).
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
October 04, 2024, 05:26:22 AM
#17
~snip~
Finding their own post history on the forum is too complicated for someone who believes cracking a wallet file is easy.


Maybe it would be "easy" if he listened to the advice he received when he first started a discussion on this topic. If you have the attitude "I don't want this, I won't try this" how will you solve the problem that brings you the 10 BTC reward? If I were in his place, I would try every advice and try all the possible dates that came to my mind - because if the password is really a date set by his father, then he didn't make up some nonsense date, but it is something that was very important to him.
legendary
Activity: 3444
Merit: 3469
Crypto Swap Exchange
October 03, 2024, 09:22:52 AM
#16
The password is THE DATE

The only problem here is to understand which date format was used.

Maybe he can try the lowercase 'the date', although there are more variations, without space, capital 'The date' or some similar combination.  Roll Eyes

Maybe because he couldn't find it - it's always easier to open a new topic and start the whole story from the beginning.
What? A user has his own post history right from his own profile, there's a link to a user's own post history. Well, if that's already too complicated for some newbies, how do they even survive? Asking for a friend... jokes aside.
~snip~


It is not complicated only for beginners, because many times we could see that even some older members ask about things that they should know, considering that they have been on the forum for years. Let's take the example of @jerry0, who obviously doesn't know how to check his post history - because if he knew, he wouldn't be asking the same questions for years Wink

Finding their own post history on the forum is too complicated for someone who believes cracking a wallet file is easy.
Pages:
Jump to: