The TrickBot Trojan has received an update that adds a UAC bypass targeting the Windows 10 operating system. The Fodhelper bypass allows programs to be launched without displaying a User Account Control prompt that asks users to allow a program to run with administrative privileges. TrickBot uses this bypass to launch itself without a warning to the user and thus evading detection by the user. The Trojan has also added a bypass to Windows Defender by trying to disable various scan options. In September 2019 we reported how the GootKit banking Trojan also added the bypass in 2019 to execute a command that whitelists the malware’s path in Windows Defender.
Source: https://www.bleepingcomputer.com/news/security/trickbot-now-uses-a-windows-10-uac-bypass-to-evade-detection/