IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

CryptReleaseContext

CryptGenKey

CryptGetProvParam

CryptGetHashParam

CryptImportKey

CryptSetKeyParam

CryptDestroyHash

CryptSetHashParam

CryptHashData

CryptCreateHash

CryptExportKey

CryptDecrypt

SystemFunction007

CryptDuplicateKey

CryptEncrypt

CryptAcquireContextW

CryptGetKeyParam

CryptAcquireContextA

CryptDestroyKey

GetLengthSid

CopySid

LsaClose

LsaOpenPolicy

LsaQueryInformationPolicy

CreateWellKnownSid

CreateProcessAsUserW

CreateProcessWithLogonW

RegQueryValueExW

RegEnumValueW

RegOpenKeyExW

RegSetValueExW

RegEnumKeyExW

RegQueryInfoKeyW

RegCloseKey

SystemFunction032

ConvertSidToStringSidW

SystemFunction033

QueryServiceObjectSecurity

QueryServiceStatusEx

BuildSecurityDescriptorW

OpenServiceW

StartServiceW

FreeSid

ControlService

SetServiceObjectSecurity

DeleteService

AllocateAndInitializeSid

OpenSCManagerW

CloseServiceHandle

CreateServiceW

IsTextUnicode

GetTokenInformation

LookupAccountNameW

LookupAccountSidW

DuplicateTokenEx

CheckTokenMembership

OpenProcessToken

CryptSetProvParam

CryptEnumProvidersW

ConvertStringSidToSidW

LsaFreeMemory

IsValidSid

GetSidSubAuthority

GetSidSubAuthorityCount

SetThreadToken

SystemFunction006

CryptEnumProviderTypesW

CryptGetUserKey

OpenEventLogW

ClearEventLogW

GetNumberOfEventLogRecords

CryptSignHashW

LsaRetrievePrivateData

LsaOpenSecret

LsaQueryTrustedDomainInfoByName

CryptDeriveKey

LsaQuerySecret

SystemFunction001

SystemFunction005

LsaSetSecret

LsaEnumerateTrustedDomainsEx

SystemFunction023

LookupPrivilegeValueW

StartServiceCtrlDispatcherW

RegisterServiceCtrlHandlerW

SetServiceStatus

OpenThreadToken

LookupPrivilegeNameW

EqualSid

CredFree

CredEnumerateW

ConvertStringSecurityDescriptorToSecurityDescriptorW

SystemFunction027

SystemFunction026

SystemFunction041

CredUnmarshalCredentialW

CredIsMarshaledCredentialW

A_SHAFinal

A_SHAUpdate

A_SHAInit

ord14

ord10

ord13

ord11

CertGetNameStringW

CryptQueryObject

CertEnumCertificatesInStore

CertAddCertificateContextToStore

CertEnumSystemStore

CertAddEncodedCertificateToStore

CertFreeCertificateContext

CryptStringToBinaryA

CertCloseStore

PFXExportCertStoreEx

CertSetCertificateContextProperty

CertOpenStore

CryptStringToBinaryW

CryptUnprotectData

CryptBinaryToStringW

CryptBinaryToStringA

CryptAcquireCertificatePrivateKey

CryptExportPublicKeyInfo

CryptFindOIDInfo

CryptSignAndEncodeCertificate

CertNameToStrW

CryptEncodeObject

CertFindCertificateInStore

CertGetCertificateContextProperty

CryptProtectData

CryptDecodeObjectEx

CDGenerateRandomBits

MD5Init

MD5Update

MD5Final

CDLocateCSystem

CDLocateCheckSum

DnsQuery_A

DnsFree

FilterFindNext

FilterFindFirst

WNetCancelConnection2W

WNetAddConnection2W

DsGetDcNameW

NetApiBufferFree

NetWkstaUserEnum

NetShareEnum

NetStatisticsGet

NetRemoteTOD

NetServerGetInfo

DsEnumerateDomainTrustsW

NetSessionEnum

I_NetServerAuthenticate2

I_NetServerTrustPasswordsGet

I_NetServerReqChallenge

ord31

ord24

ord43

ord9

ord141

ord111

ord13

ord75

CoUninitialize

CoSetProxyBlanket

CoTaskMemFree

CoInitializeEx

CoCreateInstance

VariantInit

VariantClear

SysFreeString

SysAllocString

RpcMgmtEpEltInqDone

RpcMgmtEpEltInqBegin

RpcMgmtEpEltInqNextW

RpcBindingSetObject

I_RpcGetCurrentCallHandle

RpcBindingFree

MesIncrementalHandleReset

NdrMesTypeEncode2

NdrMesTypeDecode2

NdrMesTypeFree2

NdrMesTypeAlignSize2

RpcBindingVectorFree

RpcServerUseProtseqEpW

RpcServerUnregisterIfEx

RpcBindingToStringBindingW

UuidToStringW

RpcEpResolveBinding

RpcServerRegisterIf2

RpcMgmtWaitServerListen

RpcStringFreeW

RpcServerListen

RpcServerRegisterAuthInfoW

RpcEpUnregister

RpcEpRegisterW

RpcServerInqBindings

RpcMgmtStopServerListening

UuidCreate

NdrServerCall2

NdrClientCall2

RpcBindingSetAuthInfoW

RpcBindingInqAuthClientW

RpcBindingSetOption

RpcBindingFromStringBindingW

RpcStringBindingComposeW

RpcBindingSetAuthInfoExW

MesDecodeIncrementalHandleCreate

MesHandleFree

RpcImpersonateClient

RpcRevertToSelf

MesEncodeIncrementalHandleCreate

I_RpcBindingInqSecurityContext

PathFindFileNameW

PathCombineW

PathIsDirectoryW

PathIsRelativeW

UrlUnescapeW

PathCanonicalizeW

SamGetGroupsForUser

SamGetMembersInAlias

SamGetMembersInGroup

SamEnumerateGroupsInDomain

SamGetAliasMembership

SamOpenAlias

SamRidToSid

SamEnumerateAliasesInDomain

SamOpenGroup

SamSetInformationUser

SamQueryInformationUser

SamFreeMemory

SamLookupDomainInSamServer

SamCloseHandle

SamConnect

SamLookupIdsInDomain

SamiChangePasswordUser

SamOpenUser

SamEnumerateDomainsInSamServer

SamOpenDomain

SamLookupNamesInDomain

SamEnumerateUsersInDomain

LsaConnectUntrusted

QueryContextAttributesW

FreeContextBuffer

LsaDeregisterLogonProcess

LsaLookupAuthenticationPackage

LsaFreeReturnBuffer

DeleteSecurityContext

AcquireCredentialsHandleW

EnumerateSecurityPackagesW

FreeCredentialsHandle

LsaCallAuthenticationPackage

InitializeSecurityContextW

CommandLineToArgvW

CreateWindowExW

IsCharAlphaNumericW

GetKeyboardLayout

GetClipboardSequenceNumber

GetClipboardData

TranslateMessage

EnumClipboardFormats

CloseClipboard

ChangeClipboardChain

DispatchMessageW

GetMessageW

DefWindowProcW

PostMessageW

DestroyWindow

SetClipboardViewer

OpenClipboard

SendMessageW

UnregisterClassW

RegisterClassExW

DestroyEnvironmentBlock

CreateEnvironmentBlock

GetFileVersionInfoW

GetFileVersionInfoSizeW

VerQueryValueW

HidD_FreePreparsedData

HidD_GetPreparsedData

HidD_GetAttributes

HidD_GetFeature

HidD_SetFeature

HidP_GetCaps

HidD_GetHidGuid

SetupDiGetClassDevsW

SetupDiEnumDeviceInterfaces

SetupDiDestroyDeviceInfoList

SetupDiGetDeviceInterfaceDetailW

SCardReleaseContext

SCardListCardsW

SCardEstablishContext

SCardGetCardTypeProviderNameW

SCardListReadersW

SCardFreeMemory

SCardTransmit

SCardDisconnect

SCardConnectW

SCardControl

SCardGetAttrib

WinStationFreeMemory

WinStationEnumerateW

WinStationConnectW

WinStationCloseServer

WinStationQueryInformationW

WinStationOpenServerW

ord310

ord208

ord73

ord13

ord36

ord157

ord97

ord122

ord139

ord12

ord69

ord96

ord223

ord113

ord140

ord14

ord88

ord203

ord224

ord147

ord27

ord26

ord127

ord133

ord167

ord309

ord304

ord301

ord54

ord145

ord77

ord142

ord41

ord79

ASN1_CloseEncoder

ASN1BERDotVal2Eoid

ASN1_FreeEncoded

ASN1_CreateEncoder

ASN1_CloseModule

ASN1_CreateDecoder

ASN1_CreateModule

ASN1_CloseDecoder

RtlAppendUnicodeStringToString

NtOpenDirectoryObject

RtlGetNtVersionNumbers

NtCompareTokens

RtlStringFromGUID

RtlGUIDFromString

RtlCreateUserThread

RtlAnsiStringToUnicodeString

NtQueryInformationProcess

NtQuerySystemInformation

RtlCompressBuffer

RtlGetCompressionWorkSpaceSize

NtQueryObject

RtlInitUnicodeString

RtlUpcaseUnicodeString

RtlFreeOemString

RtlUpcaseUnicodeStringToOemString

RtlEqualString

RtlGetCurrentPeb

RtlIpv6AddressToStringW

RtlEqualUnicodeString

RtlDowncaseUnicodeString

RtlFreeUnicodeString

RtlUnicodeStringToAnsiString

RtlFreeAnsiString

NtResumeProcess

NtQueryDirectoryObject

RtlAdjustPrivilege

NtTerminateProcess

NtSuspendProcess

NtSetSystemEnvironmentValueEx

NtQuerySystemEnvironmentValueEx

NtEnumerateSystemEnvironmentValuesEx

RtlIpv4AddressToStringW

ReadFile

WriteConsoleW

ReadConsoleW

GetStringTypeW

SetEnvironmentVariableW

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCPInfo

GetOEMCP

GetACP

IsValidCodePage

FindFirstFileExW

SetStdHandle

GetConsoleMode

LCMapStringW

CompareStringW

GetFileType

GetModuleHandleExW

GetModuleFileNameW

GetCommandLineW

GetCommandLineA

EncodePointer

LoadLibraryExW

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

InitializeCriticalSectionAndSpinCount

RtlUnwind

WriteFile

TerminateProcess

IsProcessorFeaturePresent

GetStartupInfoW

SetUnhandledExceptionFilter

UnhandledExceptionFilter

IsDebuggerPresent

InitializeSListHead

GetCurrentThreadId

LoadLibraryExA

SetFilePointerEx

GetProcessId

GetComputerNameW

ProcessIdToSessionId

GetCurrentThread

IsWow64Process

SetConsoleCursorPosition

SetCurrentDirectoryW

FillConsoleOutputCharacterW

GetTimeZoneInformation

GetSystemDirectoryW

GetStdHandle

GetConsoleScreenBufferInfo

SetEvent

CreateEventW

DeleteCriticalSection

InitializeCriticalSection

LeaveCriticalSection

EnterCriticalSection

CreatePipe

SetHandleInformation

GlobalSize

SetFileAttributesW

SetConsoleTitleW

ExitProcess

RaiseException

ExitThread

SetConsoleCtrlHandler

GetTickCount

QueryPerformanceCounter

FormatMessageA

GetSystemTime

GetProcessHeap

GetCurrentProcessId

GetFileSize

LockFileEx

UnlockFile

HeapDestroy

HeapCompact

HeapAlloc

GetSystemInfo

HeapReAlloc

DeleteFileW

WaitForSingleObjectEx

LoadLibraryA

FlushViewOfFile

OutputDebugStringW

GetFileAttributesExW

GetFileAttributesA

GetDiskFreeSpaceA

FormatMessageW

MultiByteToWideChar

HeapSize

HeapValidate

CreateMutexW

GetTempPathW

UnlockFileEx

SetEndOfFile

GetFullPathNameA

LockFile

OutputDebugStringA

GetDiskFreeSpaceW

GetFullPathNameW

HeapFree

HeapCreate

AreFileApisANSI

GetDateFormatW

GetSystemTimeAsFileTime

WideCharToMultiByte

SystemTimeToFileTime

GetTimeFormatW

lstrlenA

ClearCommError

PurgeComm

CreateRemoteThread

WaitForSingleObject

CreateProcessW

SetConsoleOutputCP

GetConsoleOutputCP

MapViewOfFile

CreateFileMappingW

UnmapViewOfFile

VirtualQueryEx

VirtualQuery

VirtualFreeEx

ReadProcessMemory

VirtualAllocEx

VirtualProtectEx

VirtualAlloc

VirtualFree

SetLastError

VirtualProtect

WriteProcessMemory

GetComputerNameExW

DeviceIoControl

OpenProcess

DuplicateHandle

GetCurrentProcess

FlushFileBuffers

GetCurrentDirectoryW

GetFileAttributesW

FindClose

ExpandEnvironmentStringsW

DecodePointer

FindNextFileW

GetFileSizeEx

FindFirstFileW

lstrlenW

FreeLibrary

GetModuleHandleW

GetProcAddress

LoadLibraryW

FileTimeToDosDateTime

GetTempFileNameA

FileTimeToLocalFileTime

DeleteFileA

CreateFileA

GetTempPathA

GetFileInformationByHandle

GetCurrentDirectoryA

SetFilePointer

LocalFree

CreateThread

CloseHandle

TerminateThread

GetLastError

Sleep

CreateFileW

LocalAlloc

FileTimeToSystemTime

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ