IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

GetTokenInformation

RevertToSelf

ImpersonateLoggedOnUser

RegGetValueW

MakeAbsoluteSD

ConvertStringSecurityDescriptorToSecurityDescriptorW

EventRegister

EventWriteTransfer

GetSidSubAuthority

GetSidSubAuthorityCount

InitializeSid

GetSidLengthRequired

GetCurrentThreadId

GetCurrentProcessId

ReleaseMutex

Sleep

LoadLibraryW

SetEvent

GetTickCount

GetExitCodeThread

WaitForMultipleObjects

ResumeThread

CreateEventW

GetProcAddress

GetLocaleInfoW

GetCurrentProcess

GetCommandLineW

CreateFileW

SetPriorityClass

HeapSetInformation

UnmapViewOfFile

VirtualQuery

MapViewOfFile

CreateFileMappingW

DelayLoadFailureHook

InterlockedCompareExchange

LoadLibraryExA

GetDriveTypeW

LoadLibraryExW

FreeLibrary

GetUserPreferredUILanguages

SetThreadPreferredUILanguages

QueueUserWorkItem

GetModuleHandleW

WaitForSingleObject

CreateThread

GetModuleHandleExW

CloseHandle

FindResourceExW

LoadResource

LockResource

UnhandledExceptionFilter

TerminateProcess

GetSystemTimeAsFileTime

QueryPerformanceCounter

GetModuleHandleA

SetUnhandledExceptionFilter

GetStartupInfoA

InterlockedExchange

LocalAlloc

LocalFree

GetLastError

GlobalFree

SetDCBrushColor

GetStockObject

CreateCompatibleDC

CreateDIBSection

SelectObject

DeleteObject

DeleteDC

GetLayout

BitBlt

CreateCompatibleBitmap

GetForegroundWindow

FlashWindowEx

SetPropW

DestroyWindow

PostMessageW

UnregisterClassW

DispatchMessageW

TranslateMessage

GetMessageW

GetDesktopWindow

CreateWindowExW

RegisterClassW

LoadCursorW

GetWindowRect

SendMessageW

SetThreadDesktop

GetParent

GetDC

FillRect

GetAncestor

GetPropW

ShowWindow

DefWindowProcW

BeginPaint

GetWindowDC

ReleaseDC

EndPaint

PostQuitMessage

GetWindowLongW

SetWindowLongW

GetThreadDesktop

OpenInputDesktop

CloseDesktop

GetUserObjectInformationW

LoadIconW

DestroyIcon

GetSystemMetrics

LoadStringW

OpenDesktopW

_initterm

_acmdln

exit

_ismbblead

_XcptFilter

_exit

_cexit

memset

__p__fmode

wcschr

wcsrchr

_amsg_exit

_wcsicmp

_wtoi

_errno

_wtol

_vsnwprintf

__set_app_type

_controlfp

__setusermatherr

swscanf_s

__p__commode

__getmainargs

?terminate@@YAXXZ

memcpy

_except_handler4_common

EtwSendNotification

EtwTraceMessage

RtlSubAuthoritySid

RtlNtStatusToDosError

NtQueryInformationToken

RtlNtStatusToDosErrorNoTeb

NtDuplicateToken

RtlEqualSid

WinSqmAddToStreamEx

RtlImageNtHeaderEx

EtwEventRegister

NtOpenProcess

EtwEventUnregister

NtQueryVolumeInformationFile

NtWriteVirtualMemory

RtlAllocateHeap

NtReadVirtualMemory

NtDuplicateObject

RtlFreeHeap

RtlLengthRequiredSid

EtwUnregisterTraceGuids

EtwRegisterTraceGuidsW

EtwGetTraceLoggerHandle

EtwGetTraceEnableLevel

EtwGetTraceEnableFlags

EtwEventWrite

RtlInitializeSid

RtlAdjustPrivilege

NtClose

RtlInitString

NtAllocateLocallyUniqueId

CoTaskMemAlloc

CoCreateInstance

StringFromGUID2

CoInitializeEx

CoUninitialize

CoInitializeSecurity

CoTaskMemFree

AlphaBlend

WmsgSendMessage

WTSFreeMemory

WTSQuerySessionInformationW

PlaySoundW

LoadUserProfileW

UnloadUserProfile

WinStationQueryInformationW

CertFreeCertificateContext

UninitLocalMsCtfMonitor

InitLocalMsCtfMonitor

ord345

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ