It turns out that it was an error with the memory allocated to the VM. I had allocated 2G (the VMWare default was 512M) and the memory image was almost 4G. When I increased the VM RAM to 8G everything worked. Lucky my host has 64G RAM! Sean ----- Original Message ----- From: "Michael Ligh" <michael.ligh(a)mnin.org> To: "Sean McLinden" <mclinden(a)informed.net> Cc: "Volatility Users" <vol-users(a)volatilityfoundation.org> Sent: Friday, September 26, 2014 11:16:20 PM GMT -05:00 US/Canada Eastern Subject: Re: [Vol-users] Error with 2.4 Debian Wheezy Hi Sean, It seems very strange that you’d get a different number of processes with each run. Coupled with the IOError and the path being /mnt/hgfs (VMware host to guest), I would try to first rule out something weird with VMware Tools data transfer. Can you copy the memory dump into your virtual machine and run Volatility against the local file? MHL -------------------------------------------------- Michael Ligh (@iMHLv2) GPG: http://mnin.org/gpg.pubkey.txt Blog: http://volatility-labs.blogspot.com On Sep 25, 2014, at 8:57 AM, Sean McLinden <mclinden(a)informed.net> wrote: -- NOTICE of CONFIDENTIALITY and DISCLAIMER This transmission, including attachments, is confidential. It may also be privileged or otherwise protected by work product immunity or other legal rules. If you have received it by mistake, please let us know by e-mail to the sender, only, and delete it from your system; you may not copy this message or disclose its contents to anyone. Unless expressly noted, above, this communication does not reflect an intention by the sender to conduct a transaction or make any agreement by electronic means. Nothing contained in this transmission shall constitute a contract or electronic signature under the ESIGN, any version of the UETA, or any other statute governing electronic transactions. If this transmission contains advice, the advice is based on instructions in relation to, and is provided to the addressee in connection with, the matter mentioned above. Responsibility is not accepted for reliance upon it by any other person or for any other purpose.