IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

_wcsicmp

NtQuerySystemTime

NtOpenKey

NtWriteFile

RtlInitUnicodeString

NtSerializeBoot

NtFsControlFile

NtOpenSymbolicLinkObject

NtQuerySymbolicLinkObject

RtlEqualUnicodeString

wcsstr

NtQueryDirectoryObject

NtCreateFile

RtlPrefixUnicodeString

NtClose

NtOpenDirectoryObject

LdrSetMUICacheType

NtQueryValueKey

NtOpenFile

NtTerminateProcess

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlUnhandledExceptionFilter

isspace

RtlUnicodeStringToAnsiString

RtlAllocateHeap

RtlFreeAnsiString

RtlNormalizeProcessParams

NtQueryInformationFile

NtDeviceIoControlFile

NtQueryVolumeInformationFile

wcstoul

_wcstoui64

NtReadFile

RtlRaiseStatus

memmove

RtlQueryRegistryValuesEx

NtSetThreadExecutionState

RtlRandomEx

NtQueryPerformanceCounter

_vsnprintf

_vsnwprintf

RtlMultiByteToUnicodeN

RtlOemToUnicodeN

RtlUnicodeToMultiByteN

RtlUnicodeToOemN

wcsspn

_wtol

_wtoi64

_wcsupr

_wcslwr

wcschr

NtDelayExecution

NtQuerySystemInformation

RtlSizeHeap

RtlFreeHeap

NtDisplayString

swprintf_s

NtCreateEvent

NtWaitForMultipleObjects

NtCancelIoFile

qsort

isprint

NtDrawText

RtlDosPathNameToNtPathName_U

RtlFreeUnicodeString

NtOpenProcessToken

NtAdjustPrivilegesToken

NtShutdownSystem

RtlExpandEnvironmentStrings_U

NtSetInformationFile

RtlValidRelativeSecurityDescriptor

RtlGetVersion

RtlTimeToTimeFields

VerSetConditionMask

RtlVerifyVersionInfo

wcsncmp

RtlFindMessage

RtlInitAnsiStringEx

RtlAnsiStringToUnicodeString

RtlFormatMessage

RtlWriteRegistryValue

RtlComputeCrc32

DbgPrint

RtlCrc64

RtlUpcaseUnicodeString

RtlSystemTimeToLocalTime

RtlLengthRequiredSid

RtlInitializeSid

RtlSubAuthoritySid

RtlLengthSid

RtlCopySid

RtlAddAce

RtlCreateAcl

RtlQueryInformationAcl

RtlCreateSecurityDescriptor

RtlSetGroupSecurityDescriptor

RtlSetDaclSecurityDescriptor

RtlNewSecurityObject

RtlValidSecurityDescriptor

RtlLengthSecurityDescriptor

RtlAddAccessAllowedAce

RtlInitializeGenericTable

RtlInsertElementGenericTable

RtlInitializeBitMap

RtlSetBits

RtlLookupElementGenericTable

RtlClearBits

RtlFindSetBits

RtlDeleteElementGenericTable

RtlEnumerateGenericTableWithoutSplaying

RtlNumberOfSetBits

DbgPrintEx

NtFlushBuffersFile

__C_specific_handler

__chkstk

memcmp

memcpy

memset

wcscmp

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ