Crack Windows Hashes

Written By Robert Cao

Challenge: Obtained hashes from a Windows dump. Crack the hashes to find the passwords to these Windows hashes.

  • 21259DD63B980471AAD3B435B51404EE:1E43E37B818AB5EDB066EB58CCDC1823

    11CB3F697332AE4C4A3B108F3FA6CB6D:13B29964CC2480B4EF454C59562E675C

    65711C079DC4CD3CC2265B23734E0DAC:47F747C5190DC0F0B921AA4A07F06285

    FBBDA33FC12E83FB0C240E84A183686E:DDE9DC6E34E2E6E11EF9E51C6B27ED96

    21C4E7C2EFE8E8D1C00B70065ED76AA7:A7A0F9AFD4A78F531A1CF4C42E531BBF

    E85B4B634711A266AAD3B435B51404EE:FD134459FE4D3A6DB4034C4E52403F16

    BA756FB317B622DBAAD3B435B51404EE:C8405270B10B13AE8A24612BB853567A

    199C926FA387EAB7AAD3B435B51404EE:F196F77BF8BB15781BA8364C649C5FD4

    FE4AACAAAD7D986AAAD3B435B51404EE:3928E16F614E2316CA51C336FA5B3011

    3613F7EC15407F56AAD3B435B51404EE:C82E164316183AA3AF3EA6BAA642A237

Windows Hashes, think rainbow tables. Ophcrack is a Windows and Linux tool that will use rainbow tables. Ophcrack comes preinstalled on Kali. We just need to find the rainbow tables manually. On Windows the program can download the rainbow tables for you.

Can get rainbow tables from https://sourceforge.net/projects/ophcrack/files/tables/

Downloaded the “XP Free Fast.zip” (<1 GB)

Installed the rainbow tables from the Tables and navigating to the extracted folder.

Hit Crack and that table only allowed us to crack 4 passwords.

If the small one doesn’t work, move on to a bigger table…the XP Special (7 GB). Took about 15 min to download.

Loading the bigger table and hitting crack gave us all 10 passwords

Robert Cao
Next

Encrypting Imposter Syndrome