Author

Topic: Security of whole wallet with unencrypted private keys in an encrypted wallet..? (Read 301 times)

newbie
Activity: 11
Merit: 2
Given we have:

1) a wallet.dat file with ~100 addresses.
2) 40 addresses in the same wallet, with addr, pub keys, encrypted private keys AND unencrypted private keys
3) mkey with: {crypted key, salt, and nDeriveIterations, etc)
4) Anything else we need from pywallet, etc
Is it possible to find the password for the wallet as a whole OR the unencrypted private key for one SPECIFIC address in the wallet file assuming we have the pub key, addr, and encrypted key for that address (along with mkey).

Note these are all addresses in the SAME wallet.dat, encrypted at the same time with same password and we could recover unencrypted private keys for ~40 of them (but not the 1 addr we want).

My assumption is no, because your wallet would be exposed when you spend a coin (if someone who has received coins from you got ahold of your wallet).

That being said, what do you think would be faster, assume pwd is in dictionary list...

1) Trying various passwords from a dictionary and encrypting priv keys in wallet and checking against their known encrypted verion?  (And then knowing pwd for wallet)
2)  Doing same as above, except trying to decrypt against a dictionary and matching to know unencrypted values
3) Using some GPU tool like btcrecover and brute forcing it.  Depending on GPUs etc, you can get 1k pwd / s to 50k pwd/ sec.

I have tried messing around with js bip38 tools etc, but none seem to work atm or I would be timing this.

EDIT: This is different then cracking, as you 1) have the wallet 2) have unencrypted/encrypted private keys in the same wallet.

Thanks
Jump to: