Yep, and to make it even more clear as an author of one of these LOLBins (Squirrel.exe), I have to underscore this point again - this list doesn't apply to normal Windows installations, it is only meaningful in the context of Blue teams trying to create their own hardened security boundaries via AV/EDR/AppLocker, and Red teams trying to evade said tools
(inb4 the comments, Squirrel itself attempts to strike a balance between usability and security, running only as the current user without admin limits its potential to be exploited, since any "I can hack Squirrel to run my code" trick is "Rather Involved Being On The Same Side Of The Airtight Hatch", as Raymond Chen would say)
(inb4 the comments, Squirrel itself attempts to strike a balance between usability and security, running only as the current user without admin limits its potential to be exploited, since any "I can hack Squirrel to run my code" trick is "Rather Involved Being On The Same Side Of The Airtight Hatch", as Raymond Chen would say)