IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

GlobalFree

GlobalUnlock

GlobalLock

GlobalAlloc

GlobalSize

GetSystemDirectoryA

GetStartupInfoA

CreatePipe

DisconnectNamedPipe

TerminateProcess

PeekNamedPipe

WaitForMultipleObjects

GlobalMemoryStatus

GetSystemInfo

GetVersionExA

SetThreadPriority

GetCurrentThread

VirtualAllocEx

GetEnvironmentVariableA

GetShortPathNameA

ReleaseMutex

OpenEventA

SetErrorMode

ExitProcess

CreateMutexA

CopyFileA

LocalSize

Process32Next

Process32First

CreateToolhelp32Snapshot

lstrcmpiA

GetCurrentThreadId

GetModuleHandleA

GetProcessHeap

HeapAlloc

HeapFree

WriteProcessMemory

GetModuleFileNameA

GetCurrentProcess

SetLastError

MoveFileA

WriteFile

SetFilePointer

ReadFile

CreateFileA

GetFileSize

RemoveDirectoryA

LocalAlloc

FindFirstFileA

LocalReAlloc

FindNextFileA

LocalFree

FindClose

GetLogicalDriveStringsA

GetVolumeInformationA

GetDiskFreeSpaceExA

GetDriveTypeA

lstrcatA

CreateProcessA

lstrlenA

GetFileAttributesA

CreateDirectoryA

GetLastError

DeleteFileA

CreateEventA

Sleep

CancelIo

InterlockedExchange

lstrcpyA

ResetEvent

VirtualAlloc

EnterCriticalSection

LeaveCriticalSection

VirtualFree

DeleteCriticalSection

InitializeCriticalSection

CreateThread

ResumeThread

SetEvent

OutputDebugStringA

WinExec

GetTickCount

ExitThread

OpenProcess

LoadLibraryA

GetProcAddress

CreateRemoteThread

FreeLibrary

WaitForSingleObject

TerminateThread

CloseHandle

SetPriorityClass

EmptyClipboard

OpenClipboard

WindowFromPoint

GetSystemMetrics

SetClipboardData

CloseClipboard

SetCursorPos

IsWindow

DispatchMessageA

SetCapture

mouse_event

MapVirtualKeyA

keybd_event

TranslateMessage

SystemParametersInfoA

SendMessageA

BlockInput

DestroyCursor

LoadCursorA

wsprintfA

GetClipboardData

GetMessageA

CharNextA

CloseWindow

CreateWindowExA

PostMessageA

OpenDesktopA

GetThreadDesktop

GetUserObjectInformationA

OpenInputDesktop

SetThreadDesktop

CloseDesktop

EnumWindows

GetWindowTextA

IsWindowVisible

GetWindowThreadProcessId

ExitWindowsEx

GetProcessWindowStation

OpenWindowStationA

SetProcessWindowStation

GetCursorInfo

GetCursorPos

ReleaseDC

GetDesktopWindow

GetDC

SetRect

DeleteObject

BitBlt

CreateDIBSection

SelectObject

CreateCompatibleBitmap

GetDIBits

CreateCompatibleDC

DeleteDC

CloseEventLog

RegOpenKeyExA

RegQueryValueA

RegCloseKey

DeleteService

ControlService

QueryServiceStatus

OpenServiceA

OpenSCManagerA

RegSetValueExA

RegCreateKeyA

SetNamedSecurityInfoA

BuildExplicitAccessWithNameA

GetNamedSecurityInfoA

SetEntriesInAclA

RegQueryValueExA

RegOpenKeyA

RegCreateKeyExA

ClearEventLogA

OpenEventLogA

AdjustTokenPrivileges

LookupPrivilegeValueA

OpenProcessToken

FreeSid

RegSetKeySecurity

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

AddAccessAllowedAce

InitializeAcl

GetLengthSid

AllocateAndInitializeSid

RegEnumValueA

RegEnumKeyExA

RegDeleteValueA

RegDeleteKeyA

SetServiceStatus

RegisterServiceCtrlHandlerA

StartServiceCtrlDispatcherA

StartServiceA

UnlockServiceDatabase

ChangeServiceConfig2A

LockServiceDatabase

CreateServiceA

LookupAccountSidA

GetTokenInformation

CloseServiceHandle

SHGetFileInfoA

_controlfp

_strnicmp

_strcmpi

__set_app_type

__p__fmode

__p__commode

_adjust_fdiv

__setusermatherr

_initterm

__getmainargs

_acmdln

_XcptFilter

_exit

_onexit

__dllonexit

??1type_info@@UAE@XZ

calloc

_beginthreadex

strncmp

realloc

strchr

memset

??2@YAPAXI@Z

??3@YAXPAX@Z

memcpy

__CxxFrameHandler

memmove

ceil

_ftol

strlen

strstr

memcmp

free

malloc

_except_handler3

strrchr

strcmp

strcpy

strcat

strncpy

rand

atoi

srand

time

printf

exit

strncat

SHDeleteKeyA

waveInReset

waveInStop

waveOutWrite

waveInStart

waveInAddBuffer

waveInUnprepareHeader

waveInOpen

waveInGetNumDevs

waveOutPrepareHeader

waveOutOpen

waveOutGetNumDevs

waveInClose

waveOutReset

waveOutClose

waveInPrepareHeader

waveOutUnprepareHeader

WSACleanup

WSAIoctl

setsockopt

connect

htons

gethostbyname

socket

ntohs

recv

closesocket

select

send

inet_addr

sendto

WSASocketA

inet_ntoa

WSAGetLastError

gethostname

getsockname

WSAStartup

htonl

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z

ord6663

ord800

ord537

ord6648

ord2764

ord4129

ord926

ord924

ord922

ord535

ord858

ord6877

ord860

ord4278

ord2818

ord939

ord540

InternetReadFile

InternetOpenUrlA

InternetOpenA

InternetCloseHandle

capGetDriverDescriptionA

capCreateCaptureWindowA

ICSeqCompressFrame

ICSeqCompressFrameStart

ICSendMessage

ICOpen

ICClose

ICCompressorFree

ICSeqCompressFrameEnd

GetModuleFileNameExA

EnumProcessModules

WTSFreeMemory

WTSQuerySessionInformationA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ