Starting from the machine “Traceback”, the write-ups are locked with either the Administrator's NTLM password hash (if it is a Windows machine) or Root password hash (if it is a Linux machine)(and not the salt).
Example Linux hash:
$6$YZ5Z19pP$ShJsTqviOfvZo1apR2ktP198YA0U9U.KFF/y.VkRxwZZ2DKXO3ubKsBewv8/2XzQc6YOKGofb/:18133:0:99999:7:::
Use only the below mentioned part for password:
ShJsTqviOfvZo1apR2ktP198YA0U9U.KFF/y. VkRxwZZ2DKXO3ubKsBewv8/2XzQc6YOKGofb/
Click on Posts to see all the write-ups and please give a +respect on HTB if I helped you :)