IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

SHDeleteKeyA

_ftol

ceil

memmove

??3@YAXPAX@Z

strstr

__CxxFrameHandler

??2@YAPAXI@Z

free

malloc

_except_handler3

strrchr

strncpy

atoi

_strnset

_strrev

_strnicmp

_strupr

_strcmpi

_adjust_fdiv

_initterm

_onexit

__dllonexit

??1type_info@@UAE@XZ

calloc

_beginthreadex

wcstombs

realloc

strncat

wcscpy

printf

time

srand

rand

_errno

strncmp

strchr

_snprintf

SetEvent

InterlockedExchange

CancelIo

DeleteFileA

GetLastError

CreateDirectoryA

lstrlenA

GetDriveTypeA

FindClose

LocalFree

FindNextFileA

LocalReAlloc

FindFirstFileA

LocalAlloc

RemoveDirectoryA

GetFileSize

CreateFileA

lstrcpyA

SetFilePointer

WriteFile

lstrcatA

Sleep

GetModuleFileNameA

SetLastError

GetSystemDirectoryA

GetVersionExA

CreateThread

GetCurrentProcess

CreateRemoteThread

WriteProcessMemory

VirtualAllocEx

OpenProcess

ExitThread

GetTickCount

GetLocalTime

TerminateThread

Process32Next

Process32First

CreateToolhelp32Snapshot

CreateEventA

MoveFileExA

MoveFileA

GetFileAttributesA

WaitForSingleObject

GlobalFree

GlobalUnlock

GlobalLock

GlobalAlloc

GlobalSize

CreateProcessA

CreatePipe

TerminateProcess

PeekNamedPipe

DeviceIoControl

GlobalMemoryStatusEx

GetSystemInfo

OpenEventA

SetErrorMode

SetUnhandledExceptionFilter

FreeConsole

lstrcpynA

CopyFileA

LocalSize

lstrcmpiA

GetCurrentThreadId

CloseHandle

LoadLibraryA

GetProcAddress

FreeLibrary

VirtualAlloc

EnterCriticalSection

LeaveCriticalSection

VirtualFree

DeleteCriticalSection

InitializeCriticalSection

ReadFile

RaiseException

SetProcessWindowStation

wsprintfA

ExitWindowsEx

MessageBoxA

GetWindowTextA

GetForegroundWindow

GetAsyncKeyState

GetKeyState

EnumWindows

LoadCursorA

DestroyCursor

BlockInput

SystemParametersInfoA

keybd_event

MapVirtualKeyA

SetCapture

WindowFromPoint

SetCursorPos

mouse_event

CloseClipboard

SetClipboardData

EmptyClipboard

OpenClipboard

GetClipboardData

GetSystemMetrics

SetRect

GetDC

IsWindow

SendMessageA

CloseWindow

CreateWindowExA

PostMessageA

OpenDesktopA

GetThreadDesktop

GetUserObjectInformationA

OpenInputDesktop

SetThreadDesktop

CloseDesktop

GetWindowThreadProcessId

GetProcessWindowStation

OpenWindowStationA

IsWindowVisible

GetCursorPos

GetCursorInfo

ReleaseDC

GetDesktopWindow

BitBlt

GetDIBits

CreateCompatibleBitmap

DeleteObject

CreateCompatibleDC

SelectObject

DeleteDC

CreateDIBSection

AdjustTokenPrivileges

SetServiceStatus

RegisterServiceCtrlHandlerA

DuplicateTokenEx

SetTokenInformation

CreateProcessAsUserA

RegDeleteKeyA

RegDeleteValueA

RegEnumKeyExA

RegEnumValueA

OpenProcessToken

LookupPrivilegeValueA

RegOpenKeyExA

RegCreateKeyExA

RegOpenKeyA

RegQueryValueExA

RegSetValueExA

OpenServiceA

QueryServiceStatus

ControlService

DeleteService

RegCloseKey

RegQueryValueA

SHGetSpecialFolderPathA

SHGetFileInfoA

setsockopt

htonl

sendto

WSASocketA

gethostname

WSAGetLastError

htons

recvfrom

inet_ntoa

WSACleanup

getpeername

getsockname

bind

inet_addr

socket

closesocket

ntohs

select

connect

WSAStartup

recv

__WSAFDIsSet

ioctlsocket

send

gethostbyname

?_Xran@std@@YAXXZ

?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ

?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z

?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

ord858

ord800

ord6877

ord939

ord2818

ord4278

ord860

ord6663

ord537

ord6648

ord2764

ord4129

ord926

ord924

ord922

ord535

ord540

NetLocalGroupAddMembers

NetUserAdd

NetUserDel

InternetOpenUrlA

InternetCloseHandle

InternetOpenA

InternetReadFile

ICSendMessage

ICSeqCompressFrameStart

ICSeqCompressFrameEnd

ICCompressorFree

ICClose

ICSeqCompressFrame

ICOpen

WTSQueryUserToken

CreateEnvironmentBlock

EnumProcessModules

GetModuleFileNameExA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ