public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2025-10-14 01:15:35 +02:00
Code Issues Projects Releases Wiki Activity

Update Regsvr32.yml (#461)

Browse Source 
Co-authored-by: Wietze <wietze@users.noreply.github.com>
This commit is contained in:
vict0ni
2025-09-29 23:55:00 +03:00
committed by GitHub
parent 9d6d66a3cd
commit db83c335cb
1 changed files with 18 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
yml/OSBinaries/Regsvr32.yml
View File

@@ -42,6 +42,24 @@ Commands:
OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10, Windows 11
Tags:
- Execute: SCT
- Command: regsvr32.exe /s {PATH:.dll}
Description: Execute code in a DLL. The code must be inside the exported function `DllRegisterServer`.
Usecase: Execute DLL file
Category: Execute
Privileges: User
MitreID: T1218.010
OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10, Windows 11
Tags:
- Execute: DLL
- Command: regsvr32.exe /u /s {PATH:.dll}
Description: Execute code in a DLL. The code must be inside the exported function `DllUnRegisterServer`.
Usecase: Execute DLL file
Category: Execute
Privileges: User
MitreID: T1218.010
OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10, Windows 11
Tags:
- Execute: DLL
Full_Path:
- Path: C:\Windows\System32\regsvr32.exe
- Path: C:\Windows\SysWOW64\regsvr32.exe