Prevalent Sub-techniques
T1569.002
Service Execution
Service Execution
19.2%
organizations affected
892
confirmed threats
Adversaries use the Windows Service Manager to run commands or install or manipulate services, often with elevated privilege levels.