IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

GetTraceLoggerHandle

GetTraceEnableLevel

GetTraceEnableFlags

RegisterTraceGuidsW

UnregisterTraceGuids

TraceMessage

RegDeleteKeyValueW

RegQueryValueExW

RegCloseKey

CloseServiceHandle

QueryServiceStatus

OpenSCManagerW

OpenServiceW

EventWriteString

CredWriteW

CredReadW

CredFree

LsaClose

LsaFreeMemory

LsaQueryInformationPolicy

LookupAccountNameW

LsaOpenPolicy

CreateServiceW

IsWellKnownSid

LsaNtStatusToWinError

GetSecurityDescriptorSacl

AllocateAndInitializeSid

SetNamedSecurityInfoW

CheckTokenMembership

ConvertStringSecurityDescriptorToSecurityDescriptorW

DeleteService

ControlService

QueryServiceConfigW

RegQueryInfoKeyW

RegCreateKeyExW

RegEnumKeyExW

RegSetValueExW

RegOpenKeyExW

RegDeleteValueW

ControlTraceW

EnableTraceEx2

StartTraceW

EventAccessControl

ConvertStringSidToSidW

EventAccessRemove

GetTokenInformation

CloseTrace

ProcessTrace

OpenTraceW

ConvertSidToStringSidW

RegSetKeyValueW

RegDeleteKeyW

GetLengthSid

IsValidSid

LookupAccountSidW

EqualSid

CopySid

CreateProcessAsUserW

SetThreadToken

DuplicateTokenEx

OpenProcessToken

OpenThreadToken

RevertToSelf

EventUnregister

EventRegister

EventWriteTransfer

ConvertSecurityDescriptorToStringSecurityDescriptorW

CloseThreadpoolIo

SetFileCompletionNotificationModes

CreateThreadpoolIo

CloseThreadpoolWork

SubmitThreadpoolWork

CreateThreadpoolWork

VerifyVersionInfoW

VerSetConditionMask

CancelThreadpoolIo

FindClose

FindNextFileW

FindFirstFileW

RemoveDirectoryW

SetFileAttributesW

DeleteFileW

GetVolumePathNameW

K32GetProcessImageFileNameW

CreateFileW

GetFinalPathNameByHandleW

DeviceIoControl

DeleteTimerQueueTimer

GetComputerNameExW

SetThreadPriority

GetThreadPriority

RtlPcToFileHeader

InitializeCriticalSectionEx

RaiseException

EncodePointer

InterlockedFlushSList

RtlUnwindEx

InitializeSListHead

GetCurrentProcessId

QueryPerformanceCounter

GetStartupInfoW

CreateEventW

WaitForSingleObjectEx

ResetEvent

SetEvent

HeapReAlloc

HeapSize

WideCharToMultiByte

GetProcessHeap

MultiByteToWideChar

GetStringTypeW

GetCPInfo

GetOEMCP

GetACP

IsValidCodePage

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

GetLocaleInfoW

LCMapStringW

CompareStringW

GetTimeFormatW

GetDateFormatW

LoadLibraryExW

GetSystemTimeAsFileTime

InitializeCriticalSectionAndSpinCount

FlsFree

FlsSetValue

FlsGetValue

FlsAlloc

GetTempPathW

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

GetModuleHandleExW

GetModuleHandleW

ExitProcess

HeapAlloc

HeapFree

GetCurrentThread

IsProcessorFeaturePresent

TerminateProcess

GetCurrentProcess

SetLastError

SetUnhandledExceptionFilter

UnhandledExceptionFilter

IsDebuggerPresent

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

GetProcAddress

FreeLibrary

GetCurrentThreadId

ProcessIdToSessionId

GetProcessTimes

OpenProcess

GetTickCount64

GetLastError

CloseHandle

StartThreadpoolIo

GetLocalTime

Sleep

FlushFileBuffers

OpenThread

GetSystemInfo

QueryFullProcessImageNameW

GetTickCount

K32GetModuleInformation

GlobalMemoryStatusEx

QueryDosDeviceW

GetLogicalDriveStringsW

UnmapViewOfFile

CompareStringOrdinal

GetFileTime

GetFileSize

DebugBreak

GetFileSizeEx

FindStringOrdinal

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

ReleaseSRWLockShared

ReleaseSRWLockExclusive

AcquireSRWLockShared

AcquireSRWLockExclusive

CompareFileTime

GetProcessId

GetExitCodeProcess

LockResource

SizeofResource

FindResourceW

QueueUserAPC

WaitForMultipleObjectsEx

GetModuleFileNameA

CreateSemaphoreExW

ReleaseSemaphore

ReleaseMutex

FormatMessageW

OutputDebugStringW

OpenSemaphoreW

CreateMutexExW

LocalFree

K32EnumProcessModules

VirtualQueryEx

K32GetMappedFileNameW

GetVolumeNameForVolumeMountPointW

GlobalFree

GlobalAlloc

SystemTimeToFileTime

ReadFile

CopyFileW

GetSystemTime

SystemTimeToTzSpecificLocalTime

GetDriveTypeW

CopyFileExW

CreateIoCompletionPort

PostQueuedCompletionStatus

GetQueuedCompletionStatus

GetVersionExW

GetProductInfo

SetFileTime

InitializeSRWLock

CreateThread

InitializeCriticalSection

GetModuleHandleA

GetModuleFileNameW

GetSystemDirectoryW

DuplicateHandle

GetSystemWow64DirectoryW

CreateSemaphoreW

CreateFileMappingW

MapViewOfFile

VirtualQuery

CreateDirectoryW

CreateTimerQueueTimer

WriteFile

ExpandEnvironmentStringsW

SetEnvironmentVariableW

ChangeTimerQueueTimer

LoadLibraryW

SetFilePointerEx

FormatMessageA

QueryPerformanceFrequency

SwitchToThread

InitializeProcThreadAttributeList

UpdateProcThreadAttribute

DeleteProcThreadAttributeList

VirtualProtect

LoadLibraryExA

TryAcquireSRWLockExclusive

GetFileInformationByHandleEx

FindFirstFileExW

SetEndOfFile

GetFileAttributesExW

InitOnceBeginInitialize

InitOnceComplete

DecodePointer

LCMapStringEx

CompareStringEx

ExitThread

FreeLibraryAndExitThread

GetCommandLineA

GetCommandLineW

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetStdHandle

GetFileType

GetTimeZoneInformation

SetStdHandle

GetConsoleOutputCP

GetConsoleMode

ReadConsoleW

WriteConsoleW

Module32FirstW

Module32NextW

VirtualFreeEx

IsWow64Process

VirtualAllocEx

WriteProcessMemory

CreateRemoteThread

GetExitCodeThread

RtlCompareMemory

CreateNamedPipeW

ConnectNamedPipe

GetOverlappedResult

CreateEventExW

K32GetModuleFileNameExW

SleepEx

WaitForSingleObject

LoadResource

GetFileAttributesW

MpConfigGetValueAlloc

MpConfigSetValue

MpConfigClose

MpConfigRegisterForNotifications

MpConfigUnregisterNotifications

MpGetCopyAcceleratorProcessStatus

MpShutdownCopyAcceleratorProcess

MpUtilsExportFunctions

MpHandleClose

MpClientUtilExportFunctions

MpConfigOpen

MpConfigDelValue

MpConfigGetValue

MpManagerOpen

MpManagerVersionQuery

MpFreeMemory

MpAllocMemory

MkParseDisplayNameEx

CertFreeCertificateContext

CertGetCertificateChain

CertFreeCertificateChain

CertVerifyCertificateChainPolicy

CryptUnprotectMemory

UuidToStringW

UuidFromStringW

UuidCreate

RpcStringFreeW

ExpandEnvironmentStringsForUserW

WTHelperProvDataFromStateData

CryptCATAdminEnumCatalogFromHash

CryptCATAdminReleaseContext

WinVerifyTrust

CryptCATAdminReleaseCatalogContext

CryptCATAdminCalcHashFromFileHandle

WTHelperGetProvSignerFromChain

CryptCATAdminAcquireContext

CryptCATCatalogInfoFromContext

RtlCompareUnicodeString

NtMapViewOfSection

NtQueryEaFile

RtlInitUnicodeString

NtDeviceIoControlFile

NtWaitForSingleObject

RtlPrefixUnicodeString

NtClose

RtlNtStatusToDosError

RtlGetVersion

RtlLengthSid

NtCreateFile

BCryptGetProperty

BCryptCreateHash

BCryptHashData

BCryptFinishHash

BCryptDestroyHash

BCryptOpenAlgorithmProvider

BCryptCloseAlgorithmProvider

PathCchRemoveBackslash

WNetAddConnection2W

WNetCancelConnection2W

GetPrinterDataW

OpenPrinterW

ClosePrinter

CreateXmlReader

CreateXmlWriter

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ