From 6d3d8f8a43abdef2e09b2a37d4e0b7201a1ef94e Mon Sep 17 00:00:00 2001
From: Alphonsa George <54078658+alphonsa-01@users.noreply.github.com>
Date: Wed, 28 Jun 2023 10:57:57 -0500
Subject: [PATCH] Adding cleanup command and modifying 7zip download link for
 T1560.001 Test 4 (#2474)

Co-authored-by: alphonsa-01 <NA>
---
 atomics/T1560.001/T1560.001.yaml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/atomics/T1560.001/T1560.001.yaml b/atomics/T1560.001/T1560.001.yaml
index 1a6a8394..72ea3c29 100644
--- a/atomics/T1560.001/T1560.001.yaml
+++ b/atomics/T1560.001/T1560.001.yaml
@@ -144,7 +144,7 @@ atomic_tests:
       if not exist "#{7zip_exe}" (exit /b 1)
     get_prereq_command: |
       echo Downloading 7-zip installer
-      bitsadmin /transfer myDownloadJob /download /priority normal "https://www.7-zip.org/a/7z2002-x64.exe" #{7zip_installer}
+      bitsadmin /transfer myDownloadJob /download /priority normal "https://www.7-zip.org/a/7z2301-x64.exe" #{7zip_installer}
       #{7zip_installer} /S
   executor:
     name: command_prompt
@@ -155,6 +155,8 @@ atomic_tests:
       echo "This file will be encrypted" > .\encrypted_file.txt
       "#{7zip_exe}" u archive.7z *txt -pblue
       dir
+    cleanup_command: |
+      rmdir /s /Q $PathToAtomicsFolder\T1560.001\victim-files >nul 2>&1
 - name: Data Compressed - nix - zip
   auto_generated_guid: c51cec55-28dd-4ad2-9461-1eacbc82c3a0
   description: |