IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

wcsrchr

memcmp

NtCreateKey

toupper

isdigit

NtOpenSymbolicLinkObject

memset

ZwCreatePort

ZwAcceptConnectPort

ZwCompleteConnectPort

ZwReplyWaitReceivePortEx

memcpy

_stricmp

memmove

strncpy

wcsstr

RtlUnwind

RtlAppendUnicodeToString

_alldiv

_chkstk

_wcsicmp

_itow

sprintf

strchr

strncmp

tolower

_snprintf

strrchr

NtCreateFile

atoi

_wtoi

_wcsnicmp

wcstoul

isspace

wcschr

wcsncpy

wcspbrk

_vsnprintf

NtQueryObject

NtClose

RtlCopyUnicodeString

_itoa

wcsncmp

_aullrem

GetModuleFileNameW

GetModuleHandleW

GetProcAddress

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

CreateThread

TerminateThread

CreateFileMappingW

GetModuleHandleA

SetEvent

ResetEvent

ReleaseMutex

CreateMutexW

CreateEventW

GetCurrentThreadId

WaitForMultipleObjects

DecodePointer

InitializeCriticalSectionAndSpinCount

FindResourceExW

FreeResource

LoadResource

LockResource

SizeofResource

LocalAlloc

LocalFree

FindResourceW

MultiByteToWideChar

WideCharToMultiByte

LocalFileTimeToFileTime

OutputDebugStringA

lstrlenW

GetComputerNameA

CreateFileW

WriteFile

GetTickCount

GetSystemDirectoryW

GetFileSize

ReadFile

SetFilePointer

HeapCreate

LoadLibraryW

DeleteFileW

GetTempPathW

OpenMutexW

OpenEventW

SuspendThread

VirtualAlloc

VirtualFree

GetModuleFileNameA

MoveFileExW

SetEndOfFile

SetFileAttributesW

GetCurrentProcessId

OpenProcess

GetVersionExW

MoveFileW

GetEnvironmentVariableW

GetDriveTypeW

GetVolumeInformationW

DuplicateHandle

ExitProcess

FlushInstructionCache

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

CreateDirectoryW

ExitThread

OpenFileMappingW

MapViewOfFile

CopyFileW

FreeLibrary

LoadLibraryExW

GlobalAlloc

GlobalLock

GlobalUnlock

GlobalFree

GetLocalTime

FormatMessageA

LoadLibraryA

ReleaseSemaphore

CreateSemaphoreW

WriteProcessMemory

SetWaitableTimer

CreateWaitableTimerW

GetSystemTimeAsFileTime

SetUnhandledExceptionFilter

lstrcpyW

GetFileInformationByHandle

ExpandEnvironmentStringsW

SearchPathW

SetCriticalSectionSpinCount

FileTimeToSystemTime

MapViewOfFileEx

UnmapViewOfFile

CreateMutexA

CreateEventA

FindClose

FindFirstFileW

FindNextFileW

GetCurrentDirectoryW

RemoveDirectoryW

VerSetConditionMask

VerifyVersionInfoW

QueryDosDeviceW

GetSystemWindowsDirectoryW

GetCurrentThread

SetLastError

CreateProcessA

VirtualProtectEx

VirtualQueryEx

ReadProcessMemory

CreateFileMappingA

GetVersion

GetWindowsDirectoryW

lstrcpyA

lstrcatA

lstrlenA

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

VirtualQuery

VirtualProtect

VirtualFreeEx

DeviceIoControl

GetThreadContext

IsDebuggerPresent

GetConsoleCP

GetCPInfo

GetOEMCP

GetACP

IsValidCodePage

GetFileType

SetFilePointerEx

ReadConsoleW

GetConsoleMode

GetStartupInfoW

UnhandledExceptionFilter

GetStdHandle

GetFileAttributesExW

GetCommandLineW

AreFileApisANSI

GetModuleHandleExW

IsProcessorFeaturePresent

EncodePointer

VirtualAllocEx

GetSystemInfo

CreateProcessW

ResumeThread

GetExitCodeThread

CreateRemoteThread

TerminateProcess

GetCurrentProcess

Sleep

WaitForSingleObject

GetProcessHeap

HeapSize

HeapFree

HeapReAlloc

FreeEnvironmentStringsW

GetStringTypeW

HeapAlloc

HeapDestroy

GetLastError

RaiseException

CloseHandle

OutputDebugStringW

GetFileAttributesW

GetEnvironmentStringsW

LCMapStringW

SetStdHandle

FlushFileBuffers

WriteConsoleW

QueryPerformanceCounter

GetThreadDesktop

GetUserObjectInformationA

OpenInputDesktop

MessageBoxW

SystemParametersInfoW

LoadCursorW

GetSysColor

GetWindowRect

EndPaint

BeginPaint

GetDC

SetForegroundWindow

UpdateWindow

MoveWindow

ShowWindow

IsWindow

CreateWindowExW

RegisterClassExW

PostQuitMessage

DefWindowProcW

PostMessageW

SendMessageW

DispatchMessageW

TranslateMessage

GetMessageW

wsprintfW

GetSystemMetrics

CloseDesktop

OpenSCManagerW

DeleteService

CreateServiceW

ControlService

RegEnumKeyW

GetKernelObjectSecurity

DuplicateTokenEx

RevertToSelf

ImpersonateLoggedOnUser

AdjustTokenPrivileges

LookupPrivilegeValueW

GetLengthSid

GetTokenInformation

RegEnumValueW

RegQueryInfoKeyW

RegDeleteKeyW

OpenProcessToken

RegSetValueExW

RegOpenKeyW

RegDeleteValueW

RegCreateKeyExW

CheckTokenMembership

StartServiceW

QueryServiceStatus

QueryServiceConfigW

OpenServiceW

CloseServiceHandle

ChangeServiceConfigW

RegQueryValueExW

RegOpenKeyExW

RegCloseKey

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

FreeSid

AllocateAndInitializeSid

CLSIDFromProgID

CoTaskMemAlloc

CoInitializeEx

CoFreeUnusedLibrariesEx

CreateStreamOnHGlobal

CoTaskMemFree

CoInitialize

CoCreateInstance

CoSetProxyBlanket

CoInitializeSecurity

CoUninitialize

ShellExecuteW

ord165

SHGetFolderPathW

SHGetSpecialFolderPathW

SHFileOperationW

SysAllocString

SysFreeString

VariantInit

VariantClear

SysStringByteLen

SysAllocStringByteLen

SysStringLen

SysAllocStringLen

VariantChangeType

UrlUnescapeW

PathFileExistsW

PathFindExtensionW

PathFindFileNameW

SHDeleteKeyW

PathAppendW

PathStripToRootW

PathRemoveFileSpecW

PathRemoveBackslashW

PathIsNetworkPathW

PathStripPathW

GdipGetImageThumbnail

GdipDisposeImage

GdipCloneImage

GdipLoadImageFromStreamICM

GdipSetStringFormatTrimming

GdipSetStringFormatAlign

GdipDeleteStringFormat

GdipCreateStringFormat

GdipDrawString

GdipDeleteFont

GdipLoadImageFromStream

GdipGetGenericFontFamilySansSerif

GdipDeleteFontFamily

GdipCreateFontFamilyFromName

GdipDrawImageRect

GdipFillRectangleI

GdipFillRectangle

GdipDrawLines

GdipSetSmoothingMode

GdipDeleteGraphics

GdipCreateFromHDC

GdipGetImageHeight

GdipGetImageWidth

GdipDeletePen

GdipCreatePen1

GdipCreateSolidFill

GdipDeleteBrush

GdipCloneBrush

GdiplusShutdown

GdiplusStartup

GdipFree

GdipAlloc

GdipCreateFont

GdipSetStringFormatLineAlign

InternetOpenW

InternetCrackUrlW

InternetReadFile

InternetCloseHandle

InternetConnectW

InternetQueryOptionW

InternetOpenA

InternetSetOptionW

HttpOpenRequestW

InternetCanonicalizeUrlW

HttpSendRequestA

WTSFreeMemory

WTSQueryUserToken

WTSQuerySessionInformationA

WTSOpenServerW

WTSEnumerateSessionsW

WTSCloseServer

GetNetworkParams

ImageGetCertificateHeader

ImageGetCertificateData

CryptVerifyMessageSignature

CertFreeCertificateContext

CertGetNameStringW

WinVerifyTrust

WTHelperGetProvSignerFromChain

WTHelperGetProvCertFromChain

WTHelperProvDataFromStateData

DestroyEnvironmentBlock

CreateEnvironmentBlock

ioctlsocket

ntohl

inet_addr

htons

connect

send

setsockopt

socket

gethostbyname

closesocket

inet_ntoa

gethostname

getservbyname

WSAStartup

WSAGetLastError

WSACleanup

getprotobynumber

htonl

__WSAFDIsSet

WSAEventSelect

WSAEnumNetworkEvents

select

getsockopt

recvfrom

sendto

recv

DeleteObject

timeGetTime

GetFileVersionInfoSizeW

VerQueryValueW

GetFileVersionInfoW

WNetGetUniversalNameW

GetOpenFileNameW

GetMappedFileNameW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ