IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

CryptBinaryToStringA

CryptStringToBinaryA

CryptDecodeObjectEx

InternetCloseHandle

InternetOpenA

InternetConnectA

InternetCrackUrlA

InternetReadFile

HttpOpenRequestA

HttpSendRequestA

PathFindFileNameW

StrSpnA

StrStrIA

StrChrA

StrChrIA

StrCpyNW

StrPBrkA

StrCmpNIW

StrStrIW

StrCmpNIA

PathSkipRootW

StrChrW

StrCmpNW

PathMatchSpecW

StrToInt64ExA

StrToIntA

PathCombineW

PathUnquoteSpacesW

StrCmpIW

PathRemoveExtensionW

VerQueryValueA

GetFileVersionInfoSizeA

GetFileVersionInfoW

GetFileVersionInfoA

GetFileVersionInfoSizeW

VerQueryValueW

WNetCloseEnum

WNetEnumResourceW

WNetOpenEnumW

CheckSumMappedFile

inet_ntoa

inet_addr

htonl

shutdown

closesocket

gethostbyname

WSAStartup

socket

sendto

htons

Sleep

LeaveCriticalSection

GetTimeFormatW

GetFileAttributesW

FileTimeToSystemTime

ReadFile

FlushFileBuffers

GetFileSizeEx

MoveFileW

EnterCriticalSection

CreateEventW

InitializeCriticalSection

GetFileTime

DeleteCriticalSection

CloseHandle

FileTimeToLocalFileTime

lstrcpyW

CreateThread

OpenMutexW

CreateFileW

LocalFree

ExitProcess

RtlUnwind

GetLastError

GetTempFileNameW

MapViewOfFile

UnmapViewOfFile

FindResourceW

FreeLibrary

LoadResource

CreateProcessW

LoadLibraryExW

LoadLibraryW

CopyFileW

SizeofResource

ReadProcessMemory

GetSystemWow64DirectoryW

lstrcpynW

CreateProcessA

TerminateProcess

FlushInstructionCache

GetTempPathW

SetFileTime

CreateFileMappingW

LockResource

OpenEventW

GetWindowsDirectoryW

DeleteFileW

WriteProcessMemory

ResumeThread

FindFirstFileW

GetModuleFileNameW

FindClose

SetFileAttributesW

GetCommandLineW

CreateMutexW

GetCurrentProcess

GetCurrentThread

OutputDebugStringW

SetThreadPriority

WaitForMultipleObjects

GetCurrentThreadId

SetCurrentDirectoryW

OutputDebugStringA

SetProcessShutdownParameters

IsBadStringPtrA

IsBadCodePtr

IsBadReadPtr

lstrlenA

IsBadStringPtrW

lstrcpyA

GetEnvironmentVariableW

GetModuleHandleW

WriteFile

GetVersionExW

lstrcmpiA

GetTickCount

GetSystemWindowsDirectoryW

SetEvent

WaitForSingleObject

SetFilePointerEx

SetFilePointer

MulDiv

GetFileSize

GetDateFormatW

GetProcAddress

lstrlenW

lstrcatW

GetSystemDirectoryW

VirtualAllocEx

GetVolumeInformationW

GetNativeSystemInfo

GetDriveTypeW

GetLogicalDrives

VirtualFree

VirtualAlloc

QueryDosDeviceW

FindNextFileW

SetErrorMode

HeapReAlloc

HeapAlloc

HeapFree

HeapCreate

HeapValidate

SetLastError

GetProcessHeaps

HeapSetInformation

GetCurrentProcessId

GetComputerNameA

CreateDirectoryW

ExpandEnvironmentStringsW

TlsAlloc

IsBadWritePtr

lstrcpynA

MultiByteToWideChar

WideCharToMultiByte

OpenProcess

GetFileAttributesA

SearchPathW

GetHandleInformation

CreateToolhelp32Snapshot

VirtualProtect

GetModuleHandleA

lstrcmpiW

Process32NextW

GetSystemInfo

Process32FirstW

GetTokenInformation

RegOpenKeyExW

RegQueryValueExW

RegEnumKeyW

CryptDestroyKey

CryptAcquireContextW

RegEnumValueW

RegDeleteValueW

CreateWellKnownSid

CheckTokenMembership

DuplicateToken

ConvertSidToStringSidW

GetLengthSid

CryptGenRandom

CryptReleaseContext

AdjustTokenPrivileges

FreeSid

ConvertStringSecurityDescriptorToSecurityDescriptorW

AllocateAndInitializeSid

SetKernelObjectSecurity

LookupPrivilegeValueW

CryptGetKeyParam

OpenProcessToken

RegSetValueExW

RegFlushKey

RegOpenKeyW

RegCreateKeyExW

RegCloseKey

wsprintfA

CharLowerBuffA

TranslateMessage

PeekMessageW

CreateWindowExW

GetSystemMetrics

RegisterClassW

DefWindowProcW

FillRect

DrawTextA

GetDC

SystemParametersInfoW

ReleaseDC

DispatchMessageW

GetForegroundWindow

RegisterClassExW

UnregisterClassW

GetKeyboardLayoutList

wsprintfW

GetLastInputInfo

CoInitializeSecurity

CoCreateInstance

CoInitializeEx

CoUninitialize

CoInitialize

ShellExecuteW

ShellExecuteExW

CommandLineToArgvW

SHGetFolderPathW

SHChangeNotify

ZwQueryInformationProcess

_aullshr

_allmul

_chkstk

isspace

_alldiv

memmove

ZwQuerySystemInformation

ZwOpenDirectoryObject

RtlDosPathNameToNtPathName_U

NtDeleteFile

RtlFreeUnicodeString

ZwOpenSection

ZwClose

ZwOpenProcess

memset

_aulldvrm

memcpy

NtQueryVirtualMemory

SysAllocString

SysFreeString

SetTextColor

GetDeviceCaps

GetDIBits

SetBkColor

SetPixel

DeleteObject

SelectObject

CreateCompatibleDC

CreateCompatibleBitmap

CreateFontW

GetObjectW

GetStockObject

DeleteDC

NetUserEnum

NetApiBufferFree

NetUserGetInfo

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ