IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

_initterm_e

_initterm

_register_thread_local_exe_atexit_callback

_c_exit

_o__initialize_onexit_table

_o__initialize_wide_environment

_o__invalid_parameter_noinfo

_o__purecall

_o__register_onexit_function

_o__seh_filter_exe

_o__set_app_type

_o__set_fmode

_o__set_new_mode

_o__wcsnicmp

_o__wcstoui64

memmove

_o__wtoi

_o__wtoi64

_o_exit

_o_free

_o_isspace

_o_malloc

_o_terminate

_o_tolower

_o_towlower

_o_wcscat_s

_o_wcscpy_s

_o_wcsncpy_s

_o_wcstol

_except_handler4_common

__current_exception

__current_exception_context

_CxxThrowException

_o__get_initial_wide_environment

_o__exit

_o__errno

_o__crt_atexit

_o__controlfp_s

_o__configure_wide_argv

_o__configthreadlocale

_o__cexit

_o__callnewh

_o___stdio_common_vswscanf

_o___stdio_common_vswprintf_s

_o___stdio_common_vswprintf

_o___stdio_common_vsnwprintf_s

_o___stdio_common_vsnprintf_s

_o___std_exception_destroy

_o___std_exception_copy

_o___p__commode

_o___p___wargv

_o___p___argc

wcsrchr

wcsstr

wcschr

__std_terminate

__CxxFrameHandler3

_o__wcsicmp

memcmp

memcpy

wcsncmp

memset

wcsnlen

CryptAcquireContextW

CryptReleaseContext

GetProcAddress

LoadStringW

LoadLibraryExW

GetModuleHandleW

FreeLibrary

GetModuleHandleExW

GetModuleHandleExA

GetModuleFileNameA

RegGetValueW

RegQueryInfoKeyW

RegOpenKeyExW

RegSetKeySecurity

RegDeleteTreeW

RegGetKeySecurity

RegEnumKeyExW

RegQueryValueExW

RegCreateKeyExW

RegSetValueExW

RegEnumValueW

RegCloseKey

RegDeleteValueW

LeaveCriticalSection

ResetEvent

InitializeCriticalSectionEx

OpenEventW

OpenMutexW

WaitForSingleObject

ReleaseMutex

ReleaseSRWLockExclusive

ReleaseSemaphore

EnterCriticalSection

WaitForSingleObjectEx

OpenSemaphoreW

ReleaseSRWLockShared

CreateSemaphoreExW

CreateMutexW

CreateMutexExW

AcquireSRWLockShared

DeleteCriticalSection

InitializeCriticalSectionAndSpinCount

SetEvent

CreateEventW

TryEnterCriticalSection

AcquireSRWLockExclusive

HeapAlloc

GetProcessHeap

HeapFree

SetLastError

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetLastError

SetErrorMode

ExpandEnvironmentStringsW

GetEnvironmentVariableW

SetEnvironmentVariableW

SearchPathW

GetCommandLineW

EventRegister

EventUnregister

EventWriteTransfer

EventSetInformation

WaitForThreadpoolTimerCallbacks

CloseThreadpoolTimer

CloseThreadpoolWait

WaitForThreadpoolWaitCallbacks

CreateThreadpoolTimer

SetThreadpoolTimer

SetThreadpoolWait

CreateThreadpoolWait

CreateProcessW

OpenThread

GetPriorityClass

SetThreadPriority

GetCurrentThreadId

GetThreadId

GetProcessId

GetThreadPriority

SetPriorityClass

TerminateProcess

CreateThread

GetExitCodeProcess

GetCurrentProcessId

OpenProcessToken

GetCurrentProcess

GetCurrentThread

GetProcessTimes

Sleep

InitOnceComplete

InitOnceBeginInitialize

WaitOnAddress

WakeByAddressSingle

GetSystemDefaultLangID

FormatMessageW

GetThreadUILanguage

GetUserGeoID

LCMapStringW

DebugBreak

IsDebuggerPresent

OutputDebugStringW

CloseHandle

DuplicateHandle

OpenProcess

GetThreadContext

IsProcessorFeaturePresent

GetThreadTimes

SetProcessMitigationPolicy

QueryPerformanceFrequency

QueryPerformanceCounter

GetWindowsDirectoryW

GetVersionExW

GetSystemTimeAsFileTime

GlobalMemoryStatusEx

GetSystemInfo

GetTickCount

GetSystemDirectoryW

GetTickCount64

InitializeSListHead

EqualSid

AllocateAndInitializeSid

GetSidSubAuthorityCount

GetTokenInformation

CheckTokenMembership

GetSidSubAuthority

CopySid

CreateWellKnownSid

GetLengthSid

IsValidSid

GetKernelObjectSecurity

GetSecurityDescriptorDacl

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

FreeSid

SetKernelObjectSecurity

GetFileAttributesExW

GetLogicalDriveStringsW

QueryDosDeviceW

GetDriveTypeW

CreateDirectoryW

FindClose

SetFileAttributesW

FileTimeToLocalFileTime

GetDiskFreeSpaceExW

GetFileSizeEx

GetFileAttributesW

CreateFileW

GetFinalPathNameByHandleW

GetLongPathNameW

FindFirstFileW

FindNextFileW

WriteFile

CompareFileTime

ReadFile

DeleteFileW

GetSystemWow64DirectoryW

IsWow64Process2

K32EnumProcessModules

K32GetModuleFileNameExW

QueryFullProcessImageNameW

CompareStringOrdinal

GetStringTypeExW

CoTaskMemAlloc

CoSetProxyBlanket

CoUnmarshalInterface

CLSIDFromString

CoCreateInstance

CoUninitialize

CoTaskMemFree

CoInitializeEx

ProgIDFromCLSID

GetFileVersionInfoExW

VerQueryValueW

GetFileVersionInfoSizeExW

UnmapViewOfFile

CreateFileMappingW

MapViewOfFile

VirtualQuery

OpenFileMappingW

VirtualFree

VirtualAlloc

ReadProcessMemory

VirtualQueryEx

GetProductInfo

GetNativeSystemInfo

OpenSCManagerW

OpenServiceW

CloseServiceHandle

StartServiceW

QueryServiceConfigW

FileTimeToSystemTime

PathCchStripToRoot

SetProcessInformation

GetTempPath2W

UuidCreate

GetUserDefaultUILanguage

RtlAllocateHeap

RtlNtStatusToDosErrorNoTeb

RtlCompareUnicodeString

NtDeviceIoControlFile

NtAllocateVirtualMemory

NtClose

NtQueryEvent

NtOpenEvent

RtlGetVersion

RtlImageNtHeaderEx

NtQueryInformationProcess

NtFreeVirtualMemory

NtSetSystemInformation

RtlAdjustPrivilege

RtlGetUnloadEventTraceEx

NtQueryInformationThread

RtlNtStatusToDosError

EtwUnregisterTraceGuids

EtwGetTraceEnableFlags

EtwTraceMessage

EtwGetTraceLoggerHandle

RtlSetThreadErrorMode

EtwRegisterTraceGuidsW

NtSetInformationFile

NtQuerySystemInformation

DbgPrint

ZwQueryInformationThread

RtlInitUnicodeString

RtlSecondsSince1970ToTime

NtQueryInformationToken

NtQueryObject

NtCreateFile

DbgPrintEx

ZwQueryWnfStateNameInformation

ZwUpdateWnfStateData

EtwEventWriteNoRegistration

NtWaitForSingleObject

RtlAllocateAndInitializeSid

NtAlpcConnectPort

NtAlpcSendWaitReceivePort

EtwGetTraceEnableLevel

RtlFreeSid

NtSystemDebugControl

NtPowerInformation

RtlFreeHeap

RtlCreateProcessReflection

NtResumeProcess

NtSuspendProcess

PssNtCaptureSnapshot

WerpHashApplicationParameters

WerpSetEventName

WerReportSetParameter

WerpSetDynamicParameter

WerpSetReportNamespaceParameter

WerpInitializeImageCache

WerpAuxmdMapFile

WerpAuxmdHashVaRanges

WerpAuxmdFreeCopyBuffer

WerpAuxmdDumpRegisteredBlocks

WerpAuxmdDumpProcessImages

WerpAuxmdInitialize

WerpRestartApplication

WerpIsTransportAvailable

WerReportSetUIOption

WerpSetReportFlags

WerpGetReportFlags

WerpStitchedMinidumpVmPostReadCallback

WerpStitchedMinidumpVmPreReadCallback

WerpStitchedMinidumpVmQueryCallback

WerpResetTransientImageCacheStatistics

WerpTraceImageCacheStatistics

WerpTraceUnmappedVaRangesStatistics

WerpTraceAuxMemDumpStatistics

WerpTraceSnapshotStatistics

WerpForceDeferredCollection

WerpFlushImageCache

WerpFreeUnmappedVaRanges

WerpAuxmdFree

WerReportCloseHandle

WerpFreeString

WerpAddMemoryBlock

WerpGetExtendedDiagData

WerpAddRegisteredDataToReport

WerReportAddDump

WerpAddAppCompatData

WerpGetFileByIndex

WerpGetNumFiles

WerReportSubmit

WerpSetReportIsFatal

WerpSetCallBack

WerpGetReportId

WerReportCreate

WerpSetProcessTimelines

WerpSetTelemetryAppParams

WerpSetIntegratorReportId

WerpCreateIntegratorReportId

WerpAddFile

WerpSetReportApplicationIdentity

WerpCreateMachineStore

WerpSetExitListeners

WerpReportSprintfParameter

WerpSetTelemetryKernelParams

WerpSetIptEnabled

WerpPromptUser

WerpSetTtdStatus

WerReportAddFile

WerpReserveMachineQueueReportDir

WerpAddTerminationReason

WerpValidateReportKey

WerpGetStorePath

RegisterWaitChainCOMCallback

OpenThreadWaitChainSession

WerpReportCancel

GetThreadWaitChain

WerpUnmapProcessViews

CloseThreadWaitChainSession

SymInitialize

MiniDumpWriteDump

StackWalk64

SymFunctionTableAccess64

SymSetExtendedOption

SymGetModuleInfoW64

SymCleanup

SymGetModuleBase64

TelGetWerTelemetryMode

CoGetActivationState

CoGetCallState

GetApplicationRestartSettings

WerGetFlags

I_QueryTagInformation

ApiSetQueryApiSetPresence

ResolveDelayLoadedAPI

DelayLoadFailureHook

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertSidToStringSidW

IsWow64Process

WaitForMultipleObjects

LocalFree

CheckRemoteDebuggerPresent

RtlCompareMemory

PssQuerySnapshot

PssWalkMarkerFree

PssDuplicateSnapshot

PssWalkMarkerCreate

PowerSettingUnregisterNotification

PowerSettingRegisterNotification

QueryUnbiasedInterruptTime

LoadLibraryW

StopTraceW

StartTraceW

BCryptDestroyHash

BCryptFinishHash

BCryptHashData

BCryptCreateHash

CM_Locate_DevNodeW

CM_Get_DevNode_PropertyW

CM_Get_Device_ID_ListW

CM_MapCrToWin32Err

CM_Get_Device_ID_List_SizeW

MoveFileExW

RegSetKeyValueW

EnableTrace

QueryTraceW

RegDeleteKeyW

RegOpenKeyW

RegDeleteKeyA

SetEntriesInAclW

Module32FirstW

Process32FirstW

CreateToolhelp32Snapshot

Process32NextW

Thread32First

Thread32Next

Module32NextW

GetProcessIoCounters

CommandLineToArgvW

BuildSecurityDescriptorW

WerpInitiateCrashReporting

SysFreeString

SysAllocString

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ