I am trying to attach Volatility to my AC Cuckoo Sandbox. I have downloaded and installed Volatility 2.3.1 and it's dependencies, have enabled memory_dump in cuckoo.conf, and have enabled memory in processing.conf but still get the following error in terminal.
2015-08-31 13:14:08,616 [modules.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label accuckoo_w7 to path /home/sandbox/accuckoo/storage/analyses/21/memory.dmp
2015-08-31 13:14:13,720 [modules.processing.memory] ERROR: Memory dump not found: to run volatility you have to enable memory_dump
Although it says successfully created I cannot find memory.dmp in the file path mentioned above. The following is from
processing.conf:
[memory]
enabled = yes
cuckoo.conf
Enable creation of memory dump of the analysis machine before shutting
down. Even if turned off, this functionality can also be enabled at
submission. Currently available for: VirtualBox and libvirt modules (KVM).
memory_dump = on
Anything is appreciated, hopefully this is just dependency issues but hope you can help
To all,
2015-08-31 13:14:08,616 [modules.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label accuckoo_w7 to path /home/sandbox/accuckoo/storage/analyses/21/memory.dmp 2015-08-31 13:14:13,720 [modules.processing.memory] ERROR: Memory dump not found: to run volatility you have to enable memory_dump
Although it says successfully created I cannot find memory.dmp in the file path mentioned above. The following is from
processing.conf: [memory] enabled = yes
cuckoo.conf
Enable creation of memory dump of the analysis machine before shutting
down. Even if turned off, this functionality can also be enabled at
submission. Currently available for: VirtualBox and libvirt modules (KVM).
memory_dump = on
Anything is appreciated, hopefully this is just dependency issues but hope you can help
Thanks