IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

lstrlenW

LoadLibraryA

CreateProcessA

VirtualProtect

lstrcatW

MoveFileExA

InitializeCriticalSection

CreateFileMappingA

LeaveCriticalSection

MapViewOfFile

WaitForSingleObject

lstrcpyW

CreateMutexA

CloseHandle

GetProcAddress

ReleaseMutex

CreateThread

GetProcessHeap

GetComputerNameA

HeapValidate

InterlockedExchange

EnterCriticalSection

CopyFileA

lstrlenA

WaitNamedPipeA

SizeofResource

OpenThread

GetFileAttributesExA

UpdateResourceA

AreFileApisANSI

MoveFileExW

LCMapStringA

QueueUserAPC

VirtualUnlock

ReadFile

WriteConsoleA

GetUserDefaultLCID

ResumeThread

WriteFile

SwitchToThread

GetTickCount

GetTimeFormatW

FillConsoleOutputAttribute

GetCPInfo

DuplicateHandle

SetComputerNameA

AllocConsole

SetEvent

GetVolumeNameForVolumeMountPointW

GetSystemTime

FindClose

GetVersionExA

LocalAlloc

GetCurrentDirectoryA

lstrcmpA

GetStdHandle

CreateMailslotA

ReplaceFileW

FormatMessageA

FormatMessageW

FindVolumeMountPointClose

GetLargestConsoleWindowSize

EscapeCommFunction

FileTimeToLocalFileTime

WaitForMultipleObjects

UnregisterWaitEx

GetWindowsDirectoryA

EnumSystemLocalesA

GetBinaryTypeA

WriteProfileStringA

GetCurrentDirectoryW

ReleaseSemaphore

EnumResourceLanguagesA

GetStringTypeExA

GetVolumePathNamesForVolumeNameW

MultiByteToWideChar

SetFileAttributesA

TransactNamedPipe

SetVolumeLabelA

FindNextVolumeW

GetThreadContext

PeekConsoleInputW

ConnectNamedPipe

CreateSemaphoreA

InterlockedExchangeAdd

GetEnvironmentVariableA

GetProfileStringW

FreeResource

LoadResource

GetTempPathW

LocalSize

SuspendThread

GetExitCodeProcess

LockResource

GetDefaultCommConfigW

LocalUnlock

GlobalGetAtomNameW

GetDiskFreeSpaceA

SetEnvironmentVariableW

WinExec

SetVolumeLabelW

VerLanguageNameW

GetStringTypeExW

GetHandleInformation

WaitNamedPipeW

RtlMoveMemory

GetTimeFormatA

SetTimeZoneInformation

ReadFileEx

GetFileInformationByHandle

LocalHandle

WaitForSingleObjectEx

lstrcmpW

LocalFlags

HeapSetInformation

FindVolumeClose

DeleteFileA

GetThreadPriority

Beep

InterlockedDecrement

TerminateJobObject

PulseEvent

OpenFileMappingA

SetConsoleScreenBufferSize

Sleep

UnlockFileEx

GetVolumeInformationA

GetFileAttributesA

GetComputerNameW

CreateTimerQueue

FindNextFileA

FreeConsole

GetModuleHandleW

lstrcatA

GetCommandLineA

UnlockFile

SetSystemTime

WriteProfileStringW

FindNextFileW

GetVersion

SetConsoleTextAttribute

HeapDestroy

GlobalMemoryStatusEx

GetFileType

IsProcessorFeaturePresent

FindFirstVolumeW

SetCurrentDirectoryW

FindResourceExA

ReadProcessMemory

GetUserDefaultLangID

GetLongPathNameW

GetFileSizeEx

SetErrorMode

GetProfileIntA

GetCurrentProcess

BindIoCompletionCallback

GetLocaleInfoA

CoFreeUnusedLibrariesEx

CoDisableCallCancellation

OleCreateLinkFromData

CoGetClassObject

RegisterDragDrop

CreateGenericComposite

OleTranslateAccelerator

CoGetMalloc

CoImpersonateClient

CoCreateInstanceEx

CreateILockBytesOnHGlobal

GetRunningObjectTable

StringFromGUID2

CoMarshalInterface

CoWaitForMultipleHandles

CoSetProxyBlanket

GetHGlobalFromStream

CoGetInterfaceAndReleaseStream

OleDestroyMenuDescriptor

OleRegGetUserType

MkParseDisplayName

CoGetCallContext

StgIsStorageILockBytes

ReadFmtUserTypeStg

CreatePointerMoniker

CoTaskMemFree

CoInitialize

CoTaskMemAlloc

CoAllowSetForegroundWindow

CoUninitialize

SHFileOperationA

SHGetPathFromIDListA

SHGetSpecialFolderPathW

SHGetInstanceExplorer

SHGetDesktopFolder

SHGetSpecialFolderPathA

ShellAboutW

DragQueryFileA

SHGetFileInfoW

SHFormatDrive

SHGetMalloc

SHGetPathFromIDListW

SHGetFolderPathA

ShellExecuteExW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ