IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

CryptDecodeObjectEx

CertFindCertificateInStore

CryptQueryObject

CryptDecodeObject

CertFreeCertificateContext

CertGetNameStringW

CryptMsgGetParam

CertDuplicateCertificateContext

CertOpenStore

CertCloseStore

CertGetCertificateContextProperty

CertEnumCertificatesInStore

CryptMsgClose

WSAGetLastError

WSASetLastError

send

recv

WSACleanup

WSAStartup

closesocket

GetAdaptersInfo

GlobalAlloc

GlobalFree

FreeLibrary

GetTickCount

GetSystemTime

SystemTimeToTzSpecificLocalTime

GetTimeZoneInformation

FileTimeToSystemTime

SetThreadPriority

FormatMessageW

LocalFree

LocalAlloc

GetVersionExW

VerSetConditionMask

VerifyVersionInfoW

GetFileSize

lstrcmpA

GetDriveTypeW

GetSystemWindowsDirectoryW

GetCurrentThreadId

SetEndOfFile

SetLastError

GetModuleHandleA

GetStdHandle

GetCurrentDirectoryW

CreateEventW

GetExitCodeThread

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

InitializeCriticalSectionAndSpinCount

GetSystemTimeAsFileTime

ReleaseMutex

CreateMutexW

WaitForMultipleObjects

TerminateProcess

GetStartupInfoW

GetEnvironmentVariableW

SetEnvironmentVariableW

SystemTimeToFileTime

DeleteFiber

GetFileType

QueryPerformanceCounter

ConvertFiberToThread

GetConsoleMode

SetConsoleMode

ReadConsoleA

ReadConsoleW

WriteConsoleW

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetCommandLineA

GetOEMCP

GetACP

IsValidCodePage

SetFileAttributesW

RemoveDirectoryW

CreateDirectoryW

GetFileAttributesExW

GetFileAttributesW

CreateFileW

HeapAlloc

GetProcessHeap

GetExitCodeProcess

WaitForSingleObject

CreateProcessW

GetLogicalDriveStringsW

Process32NextW

Process32FirstW

HeapFree

GetSystemInfo

GetNativeSystemInfo

IsWow64Process

GetLongPathNameW

GetCurrentProcess

GetModuleFileNameW

FindClose

OutputDebugStringW

GetFileInformationByHandle

WriteFile

ReadFile

FlushFileBuffers

VirtualQueryEx

LoadLibraryW

Module32FirstW

CreateToolhelp32Snapshot

GetCurrentProcessId

CopyFileW

GetModuleHandleW

GetProcAddress

MultiByteToWideChar

WideCharToMultiByte

QueryDosDeviceW

ExpandEnvironmentStringsW

FindNextFileW

FindFirstFileW

FindVolumeClose

FindNextVolumeW

GetVolumePathNamesForVolumeNameW

GetVolumeInformationW

FindFirstVolumeW

DeleteCriticalSection

DecodePointer

RaiseException

InitializeCriticalSectionEx

GetSystemWow64DirectoryW

CloseHandle

OpenProcess

GetLocalTime

GetWindowsDirectoryW

GetSystemDirectoryW

GetLastError

SwitchToThread

Sleep

LeaveCriticalSection

EnterCriticalSection

ResetEvent

FindFirstFileExW

HeapSize

GetFullPathNameW

SetStdHandle

HeapReAlloc

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

SetFilePointerEx

GetConsoleCP

SetConsoleCtrlHandler

ExitProcess

PeekNamedPipe

GetModuleHandleExW

FreeLibraryAndExitThread

ExitThread

CreateThread

LoadLibraryExW

RtlPcToFileHeader

InterlockedFlushSList

InterlockedPushEntrySList

RtlUnwindEx

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

InitializeSListHead

WaitForSingleObjectEx

GetLocaleInfoW

LCMapStringW

CompareStringW

GetCPInfo

EncodePointer

GetStringTypeW

IsDebuggerPresent

GetCurrentThread

DeleteFileW

SetEvent

RtlUnwind

GetUserObjectInformationW

GetProcessWindowStation

GetSystemMetrics

MessageBoxW

RegCloseKey

IsTextUnicode

OpenThreadToken

AllocateAndInitializeSid

FreeSid

GetExplicitEntriesFromAclW

DeleteAce

SetEntriesInAclW

GetNamedSecurityInfoW

SetNamedSecurityInfoW

GetSecurityInfo

SetSecurityInfo

TreeSetNamedSecurityInfoW

RegCreateKeyExW

RegDeleteKeyW

RegDeleteValueW

RegEnumKeyW

RegEnumKeyExW

CryptEnumProvidersW

CryptSignHashW

CryptDecrypt

CryptExportKey

CryptGetUserKey

CryptGetProvParam

CryptSetHashParam

CryptDestroyKey

ReportEventW

RegisterEventSourceW

DeregisterEventSource

CryptGenRandom

CryptAcquireContextA

CryptGetHashParam

CryptDestroyHash

CryptHashData

CryptReleaseContext

CryptCreateHash

CryptAcquireContextW

CreateWellKnownSid

GetSidSubAuthority

GetSidSubAuthorityCount

AreAllAccessesGranted

MapGenericMask

ConvertStringSidToSidW

ConvertSidToStringSidW

AdjustTokenPrivileges

LookupPrivilegeValueW

RegUnLoadKeyW

RegSetValueExW

RegSaveKeyW

RegRestoreKeyW

RegQueryValueExW

RegQueryInfoKeyW

RegOpenKeyExW

RegLoadAppKeyW

RegLoadKeyW

RegEnumValueW

OpenProcessToken

SHGetFolderPathW

SHGetKnownFolderPath

CoTaskMemFree

CoCreateInstance

CoInitializeEx

CoUninitialize

CoInitialize

CoInitializeSecurity

CoSetProxyBlanket

VariantClear

VariantInit

SysFreeString

SysAllocString

SysStringLen

WNetGetConnectionW

SfcIsFileProtected

GetProcessImageFileNameW

VerQueryValueW

GetFileVersionInfoW

GetFileVersionInfoSizeW

BCryptGetProperty

BCryptVerifySignature

BCryptDestroyKey

BCryptFinishHash

BCryptCloseAlgorithmProvider

BCryptDestroyHash

BCryptImportKeyPair

BCryptHashData

BCryptOpenAlgorithmProvider

BCryptGenRandom

BCryptCreateHash

AuthzAccessCheck

AuthzFreeResourceManager

AuthzFreeContext

AuthzInitializeResourceManager

AuthzInitializeContextFromSid

NetWkstaGetInfo

NetApiBufferFree

CryptCATAdminReleaseContext

CryptCATAdminCalcHashFromFileHandle

CryptCATAdminEnumCatalogFromHash

CryptCATCatalogInfoFromContext

CryptCATAdminAcquireContext

CryptCATAdminReleaseCatalogContext

WinVerifyTrust

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ