Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 17 Mar 2020 19:13:15 +0100
From: magnum <>
Subject: Re: Some 7Zip hashes can't be cracked?

On 2020-03-17 08:25, Jonathan A wrote:
> I have a sample of an encrypted 7Zip file (I know the password). When I use
> on it, I get *a long hash (492 kb)*. Then when I try using john
> with the known password (i.e. through stdin or wordlist) - it finishes
> unsuccessfully.

So it does accept it? We hate false negatives :-(

> The only difference I could see myself between the two is that 7Zip says
> the first file is encrypted with *LZMA2:768k BCJ 7zAES*.

> (I can share the first sample, but it has malware in it (I'm a malware
> researcher), so it can't go in this email).

I guess we don't support BCJ. I should be able to fix that. Please mail 
med the sample!


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.