dumpfile parse error

[ggg4566]

Nano dump file size is only 9M mimikatz and pypykatz cannot be parsed normally . Procdump dumpfile is 35M

[S4ntiagoP]

Hello @ggg4566 , is the procdump dump parsed correctly?
The difference in size is normal. Also, try updating pypykatz to the latest version and try again.

[ggg4566]

Hello @ggg4566 , is the procdump dump parsed correctly? The difference in size is normal. Also, try updating pypykatz to the latest version and try again.

pypykatz is the latest version, procdump dump can parse normal. Dumpfile cannot be parsed normally on win7 and win10

[ggg4566]

@S4ntiagoP Use old version nanodump dump file can't be parsed normally, and the dumpfile grabbed on my colleague's computer is also the same result

[S4ntiagoP]

It is failing because of the invalid signature, restore it by running this on linux:
bash scripts/restore_signature.sh mem.dump

[ggg4566]

It is failing because of the invalid signature, restore it by running this on linux: bash scripts/restore_signature.sh mem.dump

thank you! nice:)