IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

RegGetValueW

TraceMessage

UnregisterTraceGuids

RegisterTraceGuidsW

GetTraceEnableLevel

GetTraceEnableFlags

GetTraceLoggerHandle

GetTokenInformation

MakeAbsoluteSD

OpenThreadToken

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertSidToStringSidW

OpenProcessToken

EventSetInformation

EventWriteTransfer

EventRegister

EventUnregister

EventProviderEnabled

GetProcessHeap

HeapAlloc

HeapFree

GetModuleFileNameA

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

ResolveDelayLoadedAPI

DelayLoadFailureHook

GetCurrentProcess

WaitForSingleObject

CreateEventW

LocalFree

GetLastError

GetSystemWindowsDirectoryW

SetEvent

GetCurrentThread

CloseHandle

free

_wtoi

_callnewh

_XcptFilter

_amsg_exit

__wgetmainargs

__set_app_type

exit

_exit

_purecall

_cexit

__setusermatherr

_initterm

__C_specific_handler

_fmode

_commode

_lock

_unlock

__dllonexit

toupper

_vsnwprintf

_wcsicmp

__CxxFrameHandler3

memset

memcpy

malloc

memmove

_onexit

?terminate@@YAXXZ

CoAddRefServerProcess

CoRevokeClassObject

CoInitializeSecurity

CoTaskMemFree

CoTaskMemAlloc

CoInitializeEx

CoUninitialize

CoReleaseServerProcess

CoRegisterClassObject

CoCreateInstance

Sleep

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetProcAddress

LoadLibraryExW

GetModuleHandleW

FreeLibrary

QueryPerformanceCounter

TerminateProcess

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

GetSystemTimeAsFileTime

GetVersionExW

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlCaptureContext

LocalAlloc

CheckTokenMembership

PrivilegeCheck

GetSecurityDescriptorDacl

EqualSid

CreateWellKnownSid

CopySid

GetLengthSid

AuthzInitializeContextFromSid

AuthzInitializeResourceManager

AuthzAddSidsToContext

AuthzAccessCheck

AuthzFreeContext

AuthzFreeResourceManager

NetUserGetInfo

NetApiBufferFree

RpcBindingFromStringBindingW

I_RpcMapWin32Status

RpcStringBindingComposeW

NdrClientCall3

RpcBindingFree

RpcStringFreeW

I_RpcExceptionFilter

RpcBindingBind

RpcBindingCreateW

RegDeleteValueW

RegDeleteTreeW

RegSetValueExW

RegOpenKeyExW

RegEnumValueW

RegCreateKeyExW

RegQueryInfoKeyW

RegCloseKey

CreateFileW

LsaOpenPolicy

LsaQueryInformationPolicy

LsaFreeMemory

LsaClose

LsaLookupSids

SamConnect

SamOpenDomain

SamQueryInformationDomain

SamOpenUser

SamQueryInformationUser

SamCloseHandle

SamQuerySecurityObject

SamFreeMemory

NtGetCachedSigningLevel

NtQuerySystemInformation

RtlGetDeviceFamilyInfoEnum

NtQueryInformationToken

NtDuplicateToken

NtOpenProcessToken

RtlEqualSid

RtlSubAuthorityCountSid

RtlDeleteResource

RtlInitializeResource

NtClose

RtlReleaseResource

RtlAcquireResourceExclusive

RtlCopySid

RtlLengthSid

RtlGetNtProductType

RtlInitUnicodeString

RtlSubAuthoritySid

RtlInitializeSid

RtlIsMultiSessionSku

NtOpenThreadToken

UpdatePerUserSystemParameters

SystemParametersInfoW

ApiSetQueryApiSetPresence

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ