IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

MapViewOfFile

CreateFileMappingW

LockFileEx

UnlockFile

HeapCompact

DeleteFileA

CreateFileA

FlushViewOfFile

GetFileAttributesA

GetDiskFreeSpaceA

GetTempPathA

HeapValidate

UnmapViewOfFile

CreateMutexW

UnlockFileEx

GetFullPathNameA

LockFile

OutputDebugStringA

GetDiskFreeSpaceW

HeapCreate

AreFileApisANSI

GetGeoInfoW

RtlCaptureStackBackTrace

RtlUnwind

SetDllDirectoryW

SetDefaultDllDirectories

GetCurrentThreadId

GetCurrentProcess

CreateEventW

ResetEvent

SetUnhandledExceptionFilter

CreateFileW

CreateDirectoryW

GetProcessHeap

HeapSize

HeapFree

HeapReAlloc

HeapAlloc

HeapDestroy

RaiseException

DecodePointer

Process32NextW

Process32FirstW

SleepEx

QueryPerformanceFrequency

GetSystemDirectoryA

FreeLibrary

GetModuleHandleA

LoadLibraryA

QueryPerformanceCounter

GetTickCount

Sleep

SetLastError

MultiByteToWideChar

MoveFileExA

WaitForSingleObjectEx

CompareFileTime

GetSystemTimeAsFileTime

GetEnvironmentVariableA

GetStdHandle

GetFileType

ReadFile

PeekNamedPipe

WaitForMultipleObjects

VerSetConditionMask

VerifyVersionInfoW

GetEnvironmentVariableW

GetConsoleMode

SetConsoleMode

ReadConsoleA

ReadConsoleW

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

WriteFile

SwitchToFiber

DeleteFiber

CreateFiber

ConvertFiberToThread

ConvertThreadToFiber

CreateToolhelp32Snapshot

FindClose

FindFirstFileW

FindNextFileW

GetSystemTime

SystemTimeToFileTime

GetSystemInfo

VirtualProtect

VirtualQuery

LoadLibraryExA

ReleaseSemaphore

GetStringTypeExW

LCMapStringW

GetLocaleInfoW

GetSystemDefaultUILanguage

GetUserDefaultUILanguage

GetUserDefaultLCID

GetLocaleInfoEx

CreateThread

GetCurrentThread

SetThreadPriority

GetThreadPriority

TerminateThread

GetExitCodeThread

FileTimeToSystemTime

ExpandEnvironmentStringsA

ExpandEnvironmentStringsW

DeleteFileW

FindFirstFileExW

GetDiskFreeSpaceExW

GetFileAttributesExW

GetFileInformationByHandle

GetLongPathNameW

GetTempFileNameW

SetFilePointer

GetTempPathW

IsWow64Process

CopyFileW

MoveFileExW

SystemTimeToTzSpecificLocalTime

GetEnvironmentStringsW

FreeEnvironmentStringsW

SetEnvironmentVariableW

OpenEventW

OpenProcess

LocalAlloc

QueryFullProcessImageNameW

GetVolumeInformationW

GetSystemDirectoryW

GetComputerNameW

GetVersionExW

GetModuleFileNameW

GetCurrentPackageFamilyName

OutputDebugStringW

GetThreadLocale

SetThreadLocale

GetUserGeoID

GetFileAttributesW

GetFileSizeEx

FreeResource

LoadResource

LockResource

SizeofResource

FindResourceW

InitializeCriticalSection

TryEnterCriticalSection

ReleaseMutex

WaitForSingleObject

CreateMutexA

FindResourceExW

GetFileSize

DosDateTimeToFileTime

CompareStringW

FreeConsole

AttachConsole

GetConsoleDisplayMode

GlobalFree

FindResourceA

GetLocaleInfoA

CreateDirectoryA

IsDebuggerPresent

GetStringTypeW

EncodePointer

SwitchToThread

GetCPInfo

WaitForMultipleObjectsEx

OpenEventA

SetWaitableTimer

ResumeThread

GetLogicalProcessorInformation

CreateWaitableTimerA

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

UnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

InitializeSListHead

GetStartupInfoW

SignalObjectAndWait

CreateTimerQueueTimer

ChangeTimerQueueTimer

DeleteTimerQueueTimer

GetNumaHighestNodeNumber

GetProcessAffinityMask

SetThreadAffinityMask

RegisterWaitForSingleObject

UnregisterWait

GetThreadTimes

FreeLibraryAndExitThread

LoadLibraryExW

VirtualAlloc

VirtualFree

SetProcessAffinityMask

DuplicateHandle

InterlockedPopEntrySList

InterlockedPushEntrySList

InterlockedFlushSList

QueryDepthSList

UnregisterWaitEx

CreateTimerQueue

RtlPcToFileHeader

RtlUnwindEx

ExitProcess

GetModuleHandleExW

GetDriveTypeW

ExitThread

SetFilePointerEx

SetConsoleCtrlHandler

GetConsoleCP

GetDateFormatW

GetTimeFormatW

IsValidLocale

EnumSystemLocalesW

FlushFileBuffers

SetStdHandle

SetEndOfFile

SetCurrentDirectoryW

GetCurrentDirectoryW

GetFullPathNameW

GetTimeZoneInformation

IsValidCodePage

GetACP

GetOEMCP

GetCommandLineA

GetCommandLineW

WriteConsoleW

GetProcAddress

GetModuleHandleW

ProcessIdToSessionId

GetCurrentProcessId

DeleteCriticalSection

InitializeCriticalSectionEx

LeaveCriticalSection

EnterCriticalSection

GetLastError

WideCharToMultiByte

FormatMessageW

FormatMessageA

LocalFree

CreateEventA

SetEvent

LoadLibraryW

CloseHandle

GdipFillPath

GdipFillEllipse

GdipDrawString

GdiplusShutdown

GdipDrawImage

GdipAlloc

GdipFillRectangle

GdipDrawImageRectRect

GdipFree

GdipCloneImage

GdipDisposeImage

GdipSaveImageToFile

GdipDrawRectangle

GdipDrawLines

GdipDrawLine

GdipSetInterpolationMode

GdipSetTextRenderingHint

GdipGraphicsClear

GdipDrawImageRectRectI

GdipSetSmoothingMode

GdipSetCompositingQuality

GdipSetCompositingMode

GdipDeleteGraphics

GdipCreateFromHWNDICM

GdipDeleteFont

GdipCreateFromHDC

GdipFlush

GdipSetImageAttributesWrapMode

GdipSetImageAttributesColorMatrix

GdipDisposeImageAttributes

GdipCreateImageAttributes

GdipDeletePen

GdipCreateBitmapFromScan0

GdiplusStartup

GdipGetImageWidth

GdipGetImageHeight

GdipMeasureString

GdipCreateFont

GdipGetGenericFontFamilySansSerif

GdipCreatePen1

GdipCreateSolidFill

GdipDeleteBrush

GdipCloneBrush

GdipAddPathLine

GdipClosePathFigures

GdipDeletePath

GdipCreatePath

GdipGetImageEncoders

GdipGetImageEncodersSize

GdipBitmapSetPixel

GdipBitmapGetPixel

GdipBitmapUnlockBits

GdipBitmapLockBits

GdipCreateBitmapFromHICON

GdipCreateBitmapFromHBITMAP

GdipDeleteFontFamily

GdipCreateFontFamilyFromName

GdipCreateFromHWND

GdipSetClipRectI

GdipSetStringFormatTrimming

GdipSetStringFormatFlags

GdipDeleteStringFormat

GdipCreateStringFormat

GdipGetImagePixelFormat

ord60

ord211

ord26

ord217

ord45

ord50

ord41

ord22

ord27

ord32

ord301

ord143

ord200

ord30

ord79

ord35

ord33

ord46

IdnToAscii

IdnToUnicode

MiniDumpWriteDump

NetGetJoinInformation

NetApiBufferFree

DeleteDC

GetDeviceCaps

GetObjectW

CreateDIBSection

SelectObject

CreateCompatibleDC

GetDIBits

DeleteObject

CreateBitmap

CryptHashData

CryptGetUserKey

CryptGetProvParam

CryptSetHashParam

CryptDestroyKey

CryptReleaseContext

CryptAcquireContextW

ReportEventW

RegisterEventSourceW

DeregisterEventSource

CloseServiceHandle

EnumServicesStatusExW

OpenSCManagerW

OpenServiceW

NotifyServiceStatusChangeW

OpenProcessToken

RegOpenKeyExW

RegQueryValueExW

RegCreateKeyExW

RegDeleteValueW

RegCloseKey

CryptDecrypt

OpenThreadToken

RegOpenKeyW

SetEntriesInAclW

GetNamedSecurityInfoW

SetNamedSecurityInfoW

CryptCreateHash

CryptDestroyHash

CryptSignHashW

CryptEnumProvidersW

RegEnumKeyExW

RegEnumValueW

RegFlushKey

RegQueryInfoKeyW

RegSetValueExW

CryptGetHashParam

RegDeleteTreeW

RegCopyTreeW

AddAccessAllowedAceEx

AddAce

DuplicateTokenEx

GetAce

GetAclInformation

GetLengthSid

GetSecurityDescriptorSacl

GetTokenInformation

InitializeAcl

GetUserNameW

ConvertSidToStringSidW

ConvertStringSidToSidW

ConvertStringSecurityDescriptorToSecurityDescriptorW

GetSecurityInfo

SetSecurityInfo

LookupAccountNameW

GetSidSubAuthority

CryptExportKey

SHGetFileInfoW

SHFileOperationW

ShellExecuteW

SHCreateDirectoryExW

SHGetFolderPathW

SHGetKnownFolderPath

CommandLineToArgvW

SHGetMalloc

SHGetDesktopFolder

SHGetSettings

SHQueryUserNotificationState

SHAppBarMessage

SHBindToParent

ShellExecuteExW

StringFromGUID2

CoTaskMemAlloc

CoInitializeEx

CoCreateInstance

CoCreateGuid

PropVariantClear

CoTaskMemFree

CoSetProxyBlanket

CoUninitialize

CoInitializeSecurity

SysStringLen

SafeArrayGetElement

SafeArrayGetLBound

VariantChangeType

VariantCopy

GetErrorInfo

VariantClear

SysAllocString

SysAllocStringLen

SetErrorInfo

SafeArrayGetUBound

CreateErrorInfo

SysFreeString

VariantInit

BCryptGenRandom

ord173

ord217

UuidCreateSequential

RpcStringFreeW

UuidToStringW

DeleteUrlCacheEntryW

InternetQueryOptionW

WinHttpGetProxyForUrl

WinHttpOpen

WinHttpCloseHandle

CertGetIntendedKeyUsage

CertFreeCertificateContext

CertOpenStore

CertFindCertificateInStore

CertDuplicateCertificateContext

CertOpenSystemStoreA

CertGetEnhancedKeyUsage

CertGetCertificateContextProperty

CertCloseStore

CertEnumCertificatesInStore

GetUserProfileDirectoryW

ExpandEnvironmentStringsForUserW

StrRetToBufW

ord487

PathFileExistsW

SHRegDuplicateHKey

ord176

StrChrIW

listen

getaddrinfo

freeaddrinfo

recvfrom

sendto

ioctlsocket

gethostname

gethostbyname

getnameinfo

WSACloseEvent

WSACreateEvent

htonl

WSAEnumNetworkEvents

WSAEventSelect

WSAResetEvent

accept

select

__WSAFDIsSet

WSASetEvent

WSAWaitForMultipleEvents

closesocket

WSAGetLastError

recv

bind

connect

getpeername

send

shutdown

getsockname

getsockopt

htons

ntohs

setsockopt

socket

WSACleanup

WSAStartup

WSAIoctl

WSASetLastError

WTSFreeMemory

WTSQueryUserToken

WTSEnumerateSessionsW

GetUserNameExW

VerQueryValueW

GetSaveFileNameW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE