wmic
WMI command-line interface. Used for system information gathering, remote execution, process creation, and persistence.
Binary Paths
C:\Windows\System32\wbem\wmic.exe
Glob Patterns
| Pattern | Wildcards | Notes |
|---|---|---|
for /f %i in ('where wmi?.exe') do %i process call create cmd.exe
|
? | Wildcard replaces 'c' |
for /f %i in ('where wmi*c.exe') do %i
|
* | Star intentionally matches nothing (or variant chars); more specific than w*c.exe to avoid ambiguity with windmc.exe |
for /f %i in ('dir /b C:\Windows\System32\wbem\wmi?.exe') do %i
|
? | Full path dir glob |
for /f %i in ('where wmic*') do %i
|
* | Trailing star matches '.exe' |