technique
https://blog.fortinet.com/2016/12/16/malicious-macro-bypasses-uac-to-elevate-privilege-for-fareit-ma
Salvio, J., Joven, R. (2016, December 16). Malicious Macro Bypasses UAC to Elevate Privilege for Fareit Malware. Retrieved December 27, 2016.
technique
https://github.com/hfiref0x/UACME
UACME Project. (2016, June 16). UACMe. Retrieved July 26, 2016.
technique
https://msdn.microsoft.com/en-us/library/ms679687.aspx
Microsoft. (n.d.). The COM Elevation Moniker. Retrieved July 26, 2016.
technique
http://pen-testing.sans.org/blog/pen-testing/2013/08/08/psexec-uac-bypass
Medin, T. (2013, August 8). PsExec UAC Bypass. Retrieved June 3, 2016.
technique
https://technet.microsoft.com/en-us/itpro/windows/keep-secure/how-user-account-control-works
Lich, B. (2016, May 31). How User Account Control Works. Retrieved June 3, 2016.
technique
https://technet.microsoft.com/en-US/magazine/2009.07.uac.aspx
Russinovich, M. (2009, July). User Account Control: Inside Windows 7 User Account Control. Retrieved July 26, 2016.
technique
https://enigma0x3.net/2016/08/15/fileless-uac-bypass-using-eventvwr-exe-and-registry-hijacking/
Nelson, M. (2016, August 15). "Fileless" UAC Bypass using eventvwr.exe and Registry Hijacking. Retrieved December 27, 2016.
technique
https://enigma0x3.net/2017/03/14/bypassing-uac-using-app-paths/
Nelson, M. (2017, March 14). Bypassing UAC using App Paths. Retrieved May 25, 2017.
technique
https://enigma0x3.net/2017/03/17/fileless-uac-bypass-using-sdclt-exe/
Nelson, M. (2017, March 17). "Fileless" UAC Bypass Using sdclt.exe. Retrieved May 25, 2017.
technique
https://attack.mitre.org/techniques/T1548/002