IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

ApplyControlToken

DecryptMessage

QueryContextAttributesW

LsaGetLogonSessionData

AcquireCredentialsHandleA

AcceptSecurityContext

EncryptMessage

FreeCredentialsHandle

DeleteSecurityContext

InitializeSecurityContextW

LsaEnumerateLogonSessions

LsaFreeReturnBuffer

FreeContextBuffer

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

InitializeSListHead

GetCurrentThreadId

TryEnterCriticalSection

InitializeCriticalSection

AreFileApisANSI

HeapCreate

WriteFile

GetDiskFreeSpaceW

IsDebuggerPresent

HeapFree

AcquireSRWLockExclusive

CloseHandle

FindClose

ReleaseSRWLockExclusive

GetLastError

GetSystemInfo

HeapReAlloc

RemoveDirectoryW

GetModuleFileNameW

SetFileInformationByHandle

GetUserPreferredUILanguages

GetComputerNameExW

LoadLibraryExW

GetProcAddress

FreeLibrary

Sleep

GlobalLock

GlobalSize

WideCharToMultiByte

GlobalUnlock

AddVectoredExceptionHandler

SetThreadStackGuarantee

HeapAlloc

GetProcessHeap

MultiByteToWideChar

GlobalAlloc

GlobalFree

SleepConditionVariableSRW

WakeAllConditionVariable

GetModuleHandleW

CreateFileW

SwitchToThread

TryAcquireSRWLockExclusive

GetQueuedCompletionStatusEx

CreateIoCompletionPort

SetFileCompletionNotificationModes

WakeConditionVariable

AcquireSRWLockShared

ReleaseSRWLockShared

GetFileInformationByHandle

GetCurrentProcess

DuplicateHandle

GetModuleHandleA

GetCurrentThread

GetStdHandle

GetConsoleMode

WaitForSingleObject

WriteConsoleW

SetLastError

WaitForSingleObjectEx

LoadLibraryA

CreateMutexA

ReleaseMutex

GetEnvironmentVariableW

RtlLookupFunctionEntry

FormatMessageW

GetTempPathW

SetFilePointerEx

GetFileInformationByHandleEx

GetFullPathNameW

GetFinalPathNameByHandleW

FindNextFileW

CreateDirectoryW

FindFirstFileW

SetHandleInformation

GetEnvironmentStringsW

FreeEnvironmentStringsW

CompareStringOrdinal

GetSystemDirectoryW

GetWindowsDirectoryW

CreateProcessW

GetFileAttributesW

GetCurrentProcessId

CreateNamedPipeW

CreateThread

ReadFileEx

SleepEx

WriteFileEx

ExitProcess

QueryPerformanceFrequency

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetCurrentDirectoryW

RtlCaptureContext

CopyFileExW

GetDriveTypeW

GetVolumeInformationW

GetDiskFreeSpaceExW

DeviceIoControl

GetProcessTimes

OpenProcess

ReadProcessMemory

VirtualQueryEx

GetSystemTimes

GetProcessIoCounters

LocalFree

GlobalMemoryStatusEx

GetTickCount64

GetLogicalDrives

PostQueuedCompletionStatus

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

DeleteCriticalSection

GetSystemDirectoryA

GetTickCount

MoveFileExA

GetEnvironmentVariableA

VerSetConditionMask

VerifyVersionInfoW

CreateFileA

GetFileSizeEx

ReadFile

RtlVirtualUnwind

FlushFileBuffers

MapViewOfFile

CreateFileMappingW

FormatMessageA

GetSystemTime

SystemTimeToFileTime

GetFileSize

LockFileEx

UnlockFile

HeapDestroy

HeapCompact

LoadLibraryW

DeleteFileW

DeleteFileA

FlushViewOfFile

OutputDebugStringW

GetFileAttributesExW

GetFileAttributesA

GetDiskFreeSpaceA

GetTempPathA

HeapSize

HeapValidate

UnmapViewOfFile

CreateMutexW

UnlockFileEx

SetEndOfFile

GetFullPathNameA

SetFilePointer

LockFile

OutputDebugStringA

NtCreateFile

NtQueryInformationProcess

RtlNtStatusToDosError

NtQuerySystemInformation

NtCancelIoFileEx

RtlGetVersion

NtDeviceIoControlFile

SafeArrayAccessData

SafeArrayGetLBound

VariantClear

SysAllocStringLen

SafeArrayGetUBound

SafeArrayDestroy

SysAllocString

SysFreeString

SafeArrayUnaccessData

PdhAddEnglishCounterW

PdhRemoveCounter

PdhOpenQueryA

PdhCollectQueryData

PdhCloseQuery

PdhGetFormattedCounterValue

CertVerifyCertificateChainPolicy

CertDuplicateCertificateChain

CertFreeCertificateChainEngine

CertCreateCertificateChainEngine

CryptQueryObject

CertGetNameStringA

CertFindExtension

PFXImportCertStore

CryptStringToBinaryA

CertFreeCertificateChain

CertFindCertificateInStore

CertDuplicateStore

CertDuplicateCertificateContext

CertCloseStore

CertFreeCertificateContext

CertGetEnhancedKeyUsage

CertOpenStore

CertAddCertificateContextToStore

CertEnumCertificatesInStore

CryptUnprotectData

CryptDecodeObjectEx

CertGetCertificateChain

GetClipboardData

CloseClipboard

EnumDisplaySettingsExW

SetClipboardData

GetMonitorInfoW

EnumDisplayMonitors

EmptyClipboard

OpenClipboard

CreateCompatibleBitmap

DeleteDC

DeleteObject

GetObjectW

GetDIBits

StretchBlt

SetStretchBltMode

GetDeviceCaps

SelectObject

CreateCompatibleDC

CreateDCW

CryptDestroyHash

AllocateAndInitializeSid

GetUserNameW

FreeSid

RegCreateKeyExA

RegSetValueExA

CheckTokenMembership

SystemFunction036

CryptHashData

CryptCreateHash

CryptGetHashParam

CryptReleaseContext

CryptAcquireContextA

OpenProcessToken

GetTokenInformation

LookupAccountSidW

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

BCryptOpenAlgorithmProvider

BCryptGenRandom

BCryptCloseAlgorithmProvider

shutdown

__WSAFDIsSet

accept

htonl

listen

select

WSACloseEvent

WSACreateEvent

recv

send

getsockname

WSASend

WSAEnumNetworkEvents

getpeername

getsockopt

WSACleanup

WSAStartup

freeaddrinfo

getaddrinfo

setsockopt

WSASocketW

bind

WSAEventSelect

connect

WSAIoctl

closesocket

WSAGetLastError

recvfrom

WSAResetEvent

WSAWaitForMultipleEvents

htons

ntohs

socket

WSARecv

WSASetLastError

ioctlsocket

CommandLineToArgvW

CoInitializeSecurity

CoInitializeEx

CoUninitialize

CoCreateInstance

CoSetProxyBlanket

GetIfTable2

GetIfEntry2

FreeMibTable

CallNtPowerInformation

NetUserGetLocalGroups

NetUserEnum

NetApiBufferFree

GetModuleFileNameExW

GetPerformanceInfo

strchr

strstr

memchr

__C_specific_handler

memmove

__CxxFrameHandler3

__current_exception

memset

__current_exception_context

memcpy

memcmp

strrchr

strcmp

strcpy

strpbrk

strncmp

_strdup

strspn

wcslen

strncpy

strlen

strcspn

_msize

_set_new_mode

malloc

free

realloc

calloc

_register_onexit_function

_initialize_onexit_table

terminate

abort

_endthreadex

__sys_nerr

_wassert

_crt_atexit

_seh_filter_exe

_set_app_type

__sys_errlist

_errno

_configure_narrow_argv

_register_thread_local_exe_atexit_callback

_initialize_narrow_environment

_get_initial_narrow_environment

_initterm

_initterm_e

exit

_c_exit

_cexit

_exit

_beginthreadex

__p___argc

__p___argv

strtoll

atoi

wcstombs

strtol

strtoul

fread

fgets

_lseeki64

_open

fopen

fflush

__stdio_common_vsprintf

_set_fmode

fputc

fwrite

ftell

feof

_close

fclose

__acrt_iob_func

__stdio_common_vsscanf

fputs

__p__commode

fseek

_write

_read

qsort

_gmtime64

_localtime64_s

_time64

strftime

_stat64

_unlink

_access

_fstat64

_dclass

__setusermatherr

log

_fdopen

_configthreadlocale

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ