IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

WaitForSingleObject

GetModuleFileNameW

lstrcmpiW

FormatMessageW

FindFirstFileA

lstrcmpiA

FindNextFileA

GetVolumeInformationW

OutputDebugStringW

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

GetCurrentProcess

OpenProcess

SetEvent

GetTempPathW

GetTempFileNameW

CreateEventW

Sleep

ResetEvent

GetFileAttributesW

CreateDirectoryW

CreateProcessW

GetExitCodeProcess

CreateFileW

DeleteFileW

WriteFile

FreeResource

CreateFileA

CloseHandle

InterlockedDecrement

lstrlenA

FindResourceExW

FindResourceW

SizeofResource

LockResource

LoadResource

lstrlenW

WideCharToMultiByte

MultiByteToWideChar

LocalFree

TerminateProcess

LocalAlloc

GetModuleFileNameA

FlushFileBuffers

ReadFile

SetFilePointer

SetEndOfFile

SetStdHandle

WriteConsoleW

GetConsoleOutputCP

GetConsoleMode

GetConsoleCP

ExitProcess

IsValidCodePage

FreeEnvironmentStringsW

GetOEMCP

WriteConsoleA

LoadLibraryA

GetLocaleInfoW

InitializeCriticalSectionAndSpinCount

GetModuleHandleA

IsValidLocale

EnumSystemLocalesA

GetLocaleInfoA

GetUserDefaultLCID

GetSystemTimeAsFileTime

GetACP

GetCurrentProcessId

GetTickCount

QueryPerformanceCounter

GetCommandLineW

GetEnvironmentStringsW

InterlockedIncrement

InterlockedCompareExchange

InterlockedExchange

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

RaiseException

HeapDestroy

HeapAlloc

HeapFree

HeapReAlloc

HeapSize

GetProcessHeap

GetLastError

GetCPInfo

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

GetStartupInfoW

RtlUnwind

LCMapStringA

LCMapStringW

GetStringTypeW

HeapCreate

VirtualFree

VirtualAlloc

GetStringTypeA

GetModuleHandleW

GetProcAddress

TlsGetValue

TlsAlloc

TlsSetValue

TlsFree

SetLastError

GetCurrentThreadId

SetHandleCount

GetStdHandle

GetFileType

GetStartupInfoA

GetSecurityDescriptorSacl

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertStringSecurityDescriptorToSecurityDescriptorA

AdjustTokenPrivileges

LookupPrivilegeValueW

OpenProcessToken

RegDeleteValueA

RegOpenKeyA

RegSetValueExW

RegCreateKeyExW

RegFlushKey

RegCloseKey

SetSecurityInfo

ShellExecuteA

SHGetSpecialFolderPathA

SHGetFolderPathW

SHFileOperationA

SHGetSpecialFolderPathW

CoUninitialize

CoCreateInstance

CoInitializeEx

OleRun

CoInitialize

SysAllocString

SysFreeString

GetErrorInfo

VariantClear

SHDeleteKeyA

PathAddBackslashA

PathRemoveFileSpecW

PathAddBackslashW

GetModuleFileNameExW

URLDownloadToFileW

InternetConnectA

InternetCloseHandle

HttpOpenRequestA

InternetReadFile

InternetOpenW

InternetOpenUrlW

HttpSendRequestW

WSAStartup

WSACleanup

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ