Distro

Tools

Theme

Verclsid.exe

Used to verify a COM object before it is instantiated by Windows Explorer

Paths

C:\Windows\System32\verclsid.exe
C:\Windows\SysWOW64\verclsid.exe

Commands

Execute

Used to verify a COM object before it is instantiated by Windows Explorer

Use case: Run a COM object created in registry to evade defensive counter measures

Privileges: User

verclsid.exe /S /C {CLSID}

Detection

Resources