How lssas.exe store users hash?
Does lssas.exe store local and domain account user hashs and if lssas.exe store hash on memory, when I reboot computer attacker could not get older login user hashs right? But when I dump lssas.exe with crackmapexe I got domain admin hash…