I got it on the program. I know my password, and I know how everything is encrypted, I cannot understand how the encryption wizard should look like
Topic: del (Read 470 times)
EE~ }yvT�g^�tV�� ��r 9Ԓ`k@< ?
This is a decrypted wallet encryption key, why is it in this form?
This is a decrypted wallet encryption key, why is it in this form?
I think that because program or script you use show the private key on string/utf-8 format
You should convert to another format, such as binary, HEX or base58 which are common format for Bitcoin private key
You tried to get the encryption wizard, in which format you have it
This is a sample code to decrypt the password
for count, password in enumerate(passwords, 1):
derived_key = password + self._salt
for i in xrange(self._iter_count):
derived_key = l_sha512(derived_key).digest()
part_master_key = aes256_cbc_decrypt(derived_key[:32], self._part_encrypted_master_key[:16], self._part_encrypted_master_key[16:])
#
# If the last block (bytes 16-31) of part_encrypted_master_key is all padding, we've found it
if part_master_key == b"\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10":
return password if tstr == str else password.decode("utf_8", "replace"), count
$bitcoin$96$0e6978ce0376280190d0ffb8aae2fa819dee842689066d4b967fbc8402c3460f65896eecd43e323e60d5884f6d25f868$16$1edaa8a8c917e1e7$25000$96$6d85a5f6e6a789c76f5fc0d26c0bb96afa2f395f16e2c12cde6f8f138a3fb620bddf0ad13019fe54f75cf4cfaad2de89$66$03ffaebe2b6463089ff19e72ddf6e682514e49888d7eefb8f73cb82b9ca2937a0b
This is the password hash that I generated the password 1
http://prntscr.com/lt13cq
derived_key=mu pass 1+salt 1edaa8a8c917e1e7 (0e6978ce0376280190d0ffb8aae2fa819dee842689066d4b967fbc8402c3460f65896eecd43e323 e60d5884f6d25f868)
master key 6d85a5f6e6a789c76f5fc0d26c0bb96afa2f395f16e2c12cde6f8f138a3fb620bddf0ad13019fe5 4f75cf4cfaad2de89
for count, password in enumerate(passwords, 1):
derived_key = password + self._salt
for i in xrange(self._iter_count):
derived_key = l_sha512(derived_key).digest()
part_master_key = aes256_cbc_decrypt(derived_key[:32], self._part_encrypted_master_key[:16], self._part_encrypted_master_key[16:])
#
# If the last block (bytes 16-31) of part_encrypted_master_key is all padding, we've found it
if part_master_key == b"\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10\x10":
return password if tstr == str else password.decode("utf_8", "replace"), count
$bitcoin$96$0e6978ce0376280190d0ffb8aae2fa819dee842689066d4b967fbc8402c3460f65896eecd43e323e60d5884f6d25f868$16$1edaa8a8c917e1e7$25000$96$6d85a5f6e6a789c76f5fc0d26c0bb96afa2f395f16e2c12cde6f8f138a3fb620bddf0ad13019fe54f75cf4cfaad2de89$66$03ffaebe2b6463089ff19e72ddf6e682514e49888d7eefb8f73cb82b9ca2937a0b
This is the password hash that I generated the password 1
http://prntscr.com/lt13cq
derived_key=mu pass 1+salt 1edaa8a8c917e1e7 (0e6978ce0376280190d0ffb8aae2fa819dee842689066d4b967fbc8402c3460f65896eecd43e323 e60d5884f6d25f868)
master key 6d85a5f6e6a789c76f5fc0d26c0bb96afa2f395f16e2c12cde6f8f138a3fb620bddf0ad13019fe5 4f75cf4cfaad2de89
You tried to get the encryption wizard, in which format you have it
I mistook that for bitcoin private key, sorry.
It should be AES256/PBKDF2 encryption key, but after converting to binary and check it's length, looks like it's not AES256/PBKDF2.
Perhaps it's not string/utf-8 or what i remember is totally wrong. For sure, you should find out the format of shown encryption key from encryption wizard.
Sorry i can't help much
EE~ }yvT�g^�tV�� ��r 9Ԓ`k@< ?
This is a decrypted wallet encryption key, why is it in this form?
This is a decrypted wallet encryption key, why is it in this form?
I think that because program or script you use show the private key on string/utf-8 format
You should convert to another format, such as binary, HEX or base58 which are common format for Bitcoin private key
EE~ }yvT�g^�tV�� ��r 9Ԓ`k@< ?
This is a decrypted wallet encryption key, why is it in this form?
This is a decrypted wallet encryption key, why is it in this form?
Where did you get that output from? What ETFbitcoin said is true, you're displaying something in utf-8 that should be displayed in hex.
Quote from : https://en.bitcoin.it/wiki/Wallet_encryption
Quote
This master key is then encrypted with AES-256-CBC with a key derived from the passphrase using SHA-512 and OpenSSL's EVP_BytesToKey ...
If you explain what you tried to do to get that far maybe we can help out
This hash contains the master key by which you can generate all the addresses in the wallet
Oh well, you seem very informed. Good luck then...
Good afternoon, is it safe to transfer the password hash? And what does it store?
bitcoin2john.py
$bitcoin$96$c1ce586fcbd57a0dd60a1b08a65a3fad9269f788d7bcecd411d95cc222c9f0cdf7ebfc6fa33847607f7b8c1338a2c3f8$16$10cb87989a39ef71$60692$96$31f40dacb48f2aae7bd601bb50f1d4ce3ef826e0307539665ac80dba7a42480dc76de571876a82af347d7a01bd3cfb6c$66$03faef628e4cc1aec8438e8459364cfd0f867500beb9bdb17383d803cd02946c01
bitcoin2john.py
$bitcoin$96$c1ce586fcbd57a0dd60a1b08a65a3fad9269f788d7bcecd411d95cc222c9f0cdf7ebfc6fa33847607f7b8c1338a2c3f8$16$10cb87989a39ef71$60692$96$31f40dacb48f2aae7bd601bb50f1d4ce3ef826e0307539665ac80dba7a42480dc76de571876a82af347d7a01bd3cfb6c$66$03faef628e4cc1aec8438e8459364cfd0f867500beb9bdb17383d803cd02946c01
If you run bitcoin2john.py on a wallet.dat file it outputs above line, which starts with $bitcoin$ , this is the hash to the password of your wallet.
It has NOTHING to do with your private key, so YES, its safe to send it to a wallet recovery service or whoever helps you with retrieving your password.
The private key is encrypted in the wallet file, but not included in the above hash, not even your public address is included in the hash above, just information regarding the password you used to encrypt your wallet file.
So the person who cracks the hash above with a password, will just get your password. To access your funds, you have to have the physical file, unlock it, then sync it with bitcoin-qt, and finally move funds or export private key to another wallet like electrum etc
/KX
then there is a private key in the hash 
only encrypted
31f40dacb48f2aae7bd601bb50f1d4ce3ef826e0307539665ac80dba7a42480dc76de571876a82a f347d7a01bd3cfb6c
privatekey???
yes, that looks like an encrypted private key to me only encrypted 31f40dacb48f2aae7bd601bb50f1d4ce3ef826e0307539665ac80dba7a42480dc76de571876a82a f347d7a01bd3cfb6c
privatekey???
and the 66 characters public key means that's a compressed public key
for a compressed bitcoin address of 13caFLgJu92ndzpodGJ9s5frBTjPPFboAb
is there a private key in this hash ?? private key bitcoin adress wallet
it is not hash, it is hex and yes there is a private key in your wallet.dat file that is encrypted using AES256 encryption technique and then stored in the file.
the code you are using (JohnTheRipper) is a password cracker/brute force that is designed to attempt cracking wallet passwords and in the code you ran here it just serializes the data so that it can continue with the brute force if you provide it with a list of passwords and limit its search so that it becomes possible to crack it.
however i don't know why the key is 48 bytes it has an extra 16 bytes in it!
A cryptographic hash acts like a one-way encryption, meaning while you can't derive the input (eg. password) from the output (ie. hash) you can be sure that the same input will always lead to the same output.
The security of this however strongly depends on the used cryptographic hash. Also you can't "decrypt" a hash, if that's your next question.
What are you trying to do?
The security of this however strongly depends on the used cryptographic hash. Also you can't "decrypt" a hash, if that's your next question.
What are you trying to do?
Jump to: