IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

RtlUnwind

NtQueryInformationFile

NtClose

NtReadFile

NtWriteFile

PathCombineW

InitializeCriticalSectionAndSpinCount

SetHandleCount

GetEnvironmentStringsW

WideCharToMultiByte

FreeEnvironmentStringsW

GetModuleFileNameA

GetStdHandle

WriteFile

ExitProcess

SetLastError

TlsFree

DecodePointer

GetCurrentProcess

GetTickCount

GetCurrentThread

GetProcessHeap

GetProcessTimes

GetCurrentThreadId

GetCurrentProcessId

GetThreadTimes

HeapReAlloc

HeapAlloc

InterlockedIncrement

InterlockedDecrement

HeapFree

InterlockedCompareExchange

HeapDestroy

HeapCreate

HeapSize

MultiByteToWideChar

SetUnhandledExceptionFilter

CreateDirectoryW

GetFileAttributesW

CreateFileW

GetLastError

SetFileAttributesW

GetModuleHandleW

GetProcAddress

LocalFree

GetFileType

GetSystemTimeAsFileTime

GetVersionExW

GetThreadContext

SetThreadContext

CreateProcessW

VirtualFreeEx

TerminateProcess

GetModuleFileNameW

VirtualProtectEx

VirtualAllocEx

WriteProcessMemory

ResumeThread

CreateThread

CreateMutexW

IsProcessorFeaturePresent

InitializeCriticalSection

Sleep

LeaveCriticalSection

OpenMutexW

EnterCriticalSection

CreateEventW

DeleteCriticalSection

WTSGetActiveConsoleSessionId

TlsSetValue

TlsGetValue

TlsAlloc

EncodePointer

IsValidCodePage

GetOEMCP

GetACP

GetCPInfo

IsDebuggerPresent

UnhandledExceptionFilter

GetStartupInfoW

QueryPerformanceCounter

LCMapStringW

GetStringTypeW

LoadLibraryW

GetNativeSystemInfo

WaitForSingleObject

HeapSetInformation

GetCommandLineA

GetFocus

GetCapture

GetKBCodePage

GetForegroundWindow

GetDesktopWindow

GetActiveWindow

GetShellWindow

GetOpenClipboardWindow

GetClipboardOwner

RegCloseKey

SetSecurityDescriptorSacl

GetSecurityDescriptorSacl

RegOpenKeyExW

ConvertStringSecurityDescriptorToSecurityDescriptorW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

RegQueryValueExW

SHGetFolderPathW

ShellExecuteExW

ord680

CoInitializeEx

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ