Return to forum

Rohholz · July 22, 2022 at 1:02 PM

Hey guys, so I am kind of lost right now.
I just downloaded the RomWe Database Leak from this forum and it is stated that the passwords are encrypted as salted Sha-1 hashes.
However when expecting the leak I noticed that the hash length is only 35 digits instead of the typical 40 and there is also a ":" at the end.
Example: "35025b92e90ef3a12419036749ce90e4:9f".

I would really appreciate some help identifying this hash type.
Sorry of this is a newbie question, I am kinda new to all this stuff. :)

hckyolo · July 23, 2022 at 1:00 AM

This should be md5 with tailing salt. osCommerce is known for using this kind of hashing.

beller0ph0n · July 23, 2022 at 1:50 AM

It is double MD5 or MD4(unlikely)

electricpotato · July 23, 2022 at 1:47 PM

That is md5 with salt. If you want to identify any other hash use the tool hashid and it will give you the hashing type.
You can also check "hashcat example hashes" to get familiar with it

wolfy420 · July 26, 2022 at 7:35 PM

I recommend you haiti or hash-identifier.
These are tools(on UNIX like systems only) to identify any hash.
If you want to get only the name of the hash use hash-identifier but if you want too see details about the hash use haiti.

kejts66 · July 26, 2022 at 9:21 PM

you must search this on google - is more sites

kejts46 · July 26, 2022 at 9:22 PM

i recomend for you kali system but on google are soo many sites with this

Rohholz · July 27, 2022 at 2:28 PM

(July 23, 2022, 01:00 AM)hckyolo Wrote: This should be md5 with tailing salt. osCommerce is known for using this kind of hashing.

This seems to be the right one. Thank you very much :)

Blood · July 27, 2022 at 9:35 PM

next time try https://hashes.com/en/tools/hash_identifier

dgrwgrwg · July 28, 2022 at 4:23 PM

Salted MD5.