User Account Control bypass techniques that allow malware to operate stealthily and resist detection and removal efforts. The key findings highlight the innovative and diverse methods used by modern malware to evade security measures, emphasizing the need for advanced and comprehensive security solutions to counter these threats.
- UAC Bypass Using lolbins runas, fodhelper.exe, slui.exe,
- SilentCleanup Scheduled Task,
- sdclt.exe IsolatedCommand and App Paths, perfmon.exe
- Exploiting CMSTP for Arbitrary Privilege Elevation in Windows
- Exploiting Elevated COM Object (IFileOperation) for UAC Bypass in Windows
- DLL side-loading
- ConsentUI
- RAiLaunchAdminProcess
