InterPals Database - Leaked, Download!
by Rhythm - November 13, 2017 at 02:10 PM
So we have password_hash, password_enc and password_md5

Could someone please explain what those are? Is the Hash the salt, whats enc? And is password_md5 just the password in md5 encryption??

(June 19, 2018 at 01:08 PM)JoanCoast Wrote: Are you sure the password format is MD5 / phpBB (mode 400 in hashcat) ?
To me it seems it is bcrypt (mode 3200 in hashcat)...

So let me clarify...
The database fields are : name, username, email, birth, city, state, country, password_hash, password_enc, password_md5
prathiba amynamy [email protected] 1981-09-01 Villiers-le-Bel $2y$10$7S3bVQN6UmKiZ0pzN/0w6.m71VK6bWXCxkHHMxj0gcZ2U2GG3mJrq GyA+cuVFRxVff2dlbjwcXHKrpOR7cWu0/X04GKmTJEQ= 038312a74d25bdf2c71bd7fff601593d
Keylla Keylla [email protected] 1984-05-24 João Pessoa Brazil $2y$10$yy2tlyqN2Uomfs4eBGY10ezSuNZZCwaZEAAT75QlmBew/q2stDDkm /E9qgAhjqirvpGO+Fr4eeyw6mhsB7HlRhBRqSKgDVz0= b4e93587f277b2e203ba7abd0e42fdc0

password_hash is the bcrypt hash ($2y$10$) of the password.
I do not know what password_enc is
and password_md5 is the MD5 hash of the password.
So for an entry there are 2 ways to crack the password: either you crack the bcrypt one (mode 3200 with hashcat) which is very very slow or you target the MD5 one (mode 0 with hashcat) which is very fast.

In the first example above the password is 1+1=deux
and the second one is 007JamesBond

Attacking the MD5 allowed me to dehash ~95% of the passwords. If some of you are interested, let me know and I'll publish a "dehash" version.

