Hack your Microsoft Server 2012 Login Password

We had an unused Ms Server 2012 box laying around due to a cloud migration. We couldn't remember the login password, so instead of re-imaging the system, we decided to use the opportunity to see what it takes to reset the Administrator password. It turns out, it's so easy your grand mother can do it.

Here is how to do it:

  1. Pop in your Ms Server 2012 disc and boot from it.
  2. When the initial Windows Setup window pops up, click Next.
  3. Once you arrive on the Install Now screen, pick the Repair your computer link option on the bottom left of the screen.
  4. On the Choose an option screen, click on Troubleshoot.
  5. You'll arrive at the Advanced Options screen, where you can choose Command Prompt.
  6. Once command prompt is running, utilize the following commands:
    • (You must be able to identify the drive your windows install is located on. In our case, it was drive letter d: - it may be e: or c: on yours. When you type in the below commands, you will only be able to change directory's to windows\system32 when you are using the right drive letter. If it fails, you are not targeting the correct drive letter. We identified which drive letter to use, by using the dos command dir on common drive letters till we discovered ours was d: where we identified it was correct when we saw the windows directory structure listed.)
    • d:
    • cd windows\system32
    • ren Utilman.exe Utilman.exe.old
    • copy cmd.exe Utilman.exe
  7. Close the command prompt and then click Continue.
  8. The system will boot up your Windows Server install now. Once the login screen pops up, press the following keys on your keyboard, Windows Key + U.
  9. A command prompt window will pop up where you can now change your password using the following command:
    • net user administrator password (type in any password you desire)
  10. Close the command prompt window now and login using your new assigned password.

Now to clear the above password bypass to avoid anyone else from changing the password.

  1. Restart and boot from the Windows Server 2012 disc again.
  2. When the initial Windows Setup window pops up, click Next.
  3. Once you arrive on the Install Now screen, pick the Repair your computer link option on the bottom left of the screen.
  4. On the Choose an option screen, click on Troubleshoot.
  5. You'll arrive at the Advanced Options screen, where you can choose Command Prompt.
  6. Once command prompt is running, utilize the following commands:
    • d:
    • cd windows\system32
    • ren utilman.exe utilman.exe.new
    • copy utilman.exe.old utilman.exe
  7. Close the command prompt and then click Continue.
  8. Now your server will boot back up without the password bypass hack in place and you can move on with your life feeling like you just accomplished the baddest a** hack in the world. You might even call yourself an elite hacker at the water cooler in your office. Not that we encourage this behavior at all.

This technique should also work with Microsoft Windows Server 2008.

Doing the homework for you,
Team ZRTECH