From 9d6d66a3cdfb5ca583c8ca4b9e0f406b0ad298fa Mon Sep 17 00:00:00 2001
From: Avihay Eldad <46644022+avihayeldad@users.noreply.github.com>
Date: Mon, 29 Sep 2025 23:51:25 +0300
Subject: [PATCH] Create Mpiexec.yml (#466)

Co-authored-by: Wietze <wietze@users.noreply.github.com>
---
 yml/OtherMSBinaries/Mpiexec.yml | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 yml/OtherMSBinaries/Mpiexec.yml

diff --git a/yml/OtherMSBinaries/Mpiexec.yml b/yml/OtherMSBinaries/Mpiexec.yml
new file mode 100644
index 0000000..d5f8d11
--- /dev/null
+++ b/yml/OtherMSBinaries/Mpiexec.yml
@@ -0,0 +1,23 @@
+---
+Name: Mpiexec.exe
+Description: Command-line tool for running Message Passing Interface (MPI) applications.
+Author: Avihay Eldad
+Created: 2025-09-25
+Commands:
+  - Command: mpiexec.exe {CMD}
+    Description: Executes a command via MPI commad-line tool.
+    Usecase: Executes commands under a trusted, Microsoft signed binary.
+    Category: Execute
+    Privileges: User
+    MitreID: T1127
+    OperatingSystem: Windows
+    Tags:
+      - Execute: CMD
+Full_Path:
+  - Path: C:\Program Files\Microsoft MPI\Bin\mpiexec.exe
+  - Path: C:\Program Files (x86)\Microsoft MPI\Bin\mpiexec.exe
+Resources:
+  - Link: https://learn.microsoft.com/en-us/powershell/high-performance-computing/mpiexec
+Acknowledgement:
+  - Person: Avihay Eldad
+    Handle: '@AvihayEldad'