Task Scheduler
Location:
N/A1
Classification:
| Criteria | Value |
|---|---|
| Permissions | User; Admin |
| Security context | User; System |
| Persistence type | Other |
| Code type | EXE; DLL; Fileless; Other |
| Launch type | Automatic; Other |
| Impact | Non-destructive |
| OS Version | All OS versions |
| Dependencies | OS only |
| Toolset | Scriptable |
Description:
Scheduled tasks may be used to run custom tasks in many different scenarios. Generally, end-users can create tasks executing within their security context, administrators can create tasks running as System.
References:
https://docs.microsoft.com/en-us/windows/win32/taskschd/task-scheduler-start-page
Credits:
See also:
Remarks:
-
Task data is stored within the registry, but API access seems to be more reasonable in all cases. ↩