IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

CryptDecodeObjectEx

CryptMsgGetParam

CertGetNameStringW

CryptQueryObject

CryptMsgClose

CryptDecodeObject

CertVerifyCertificateChainPolicy

CertOpenSystemStoreW

CertGetIssuerCertificateFromStore

CertCreateCertificateContext

CertFreeCertificateContext

CertCompareCertificateName

CertDuplicateCertificateContext

CertAddCertificateContextToStore

CertFindCertificateInStore

CertFreeCertificateChain

CertOpenStore

CertCloseStore

CertGetCertificateContextProperty

CertEnumCertificatesInStore

CertGetCertificateChain

GetAdaptersInfo

FlushFileBuffers

SetFilePointer

ReadFile

WriteFile

InitializeCriticalSectionEx

RaiseException

DecodePointer

DeleteCriticalSection

LocalAlloc

FormatMessageW

GetFileSize

lstrcmpA

FindFirstFileW

GetFileAttributesW

GetFileAttributesExW

CreateDirectoryW

RemoveDirectoryW

SetFileAttributesW

DeleteFileW

GetCurrentThreadId

SetFileTime

SetEndOfFile

SetLastError

FindNextFileW

FindClose

GetModuleHandleA

GetStdHandle

ExpandEnvironmentStringsW

GetCurrentDirectoryW

GetVersionExA

GetSystemTimeAsFileTime

ReleaseMutex

CreateMutexW

InitializeCriticalSectionAndSpinCount

GetExitCodeThread

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetStartupInfoW

LoadLibraryExW

GetEnvironmentVariableW

SetEnvironmentVariableW

SystemTimeToFileTime

SwitchToFiber

DeleteFiber

CreateFiber

GetFileType

ConvertFiberToThread

ConvertThreadToFiber

GetConsoleMode

SetConsoleMode

ReadConsoleA

ReadConsoleW

WriteConsoleW

HeapSize

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetCommandLineA

FileTimeToSystemTime

GetTimeZoneInformation

SystemTimeToTzSpecificLocalTime

GetSystemTime

GetLocalTime

GetLongPathNameW

GetWindowsDirectoryW

GetModuleFileNameW

GetFileInformationByHandle

GetProcessHeap

QueryDosDeviceW

GetLogicalDriveStringsW

Process32NextW

Process32FirstW

HeapFree

GetNativeSystemInfo

IsWow64Process

LocalFree

GetSystemInfo

GetVersionExW

CopyFileW

GetTempPathW

DeviceIoControl

CreateFileW

VerifyVersionInfoW

VerSetConditionMask

VirtualQueryEx

GetModuleHandleW

Module32FirstW

CreateToolhelp32Snapshot

QueryPerformanceCounter

QueryPerformanceFrequency

OutputDebugStringW

MultiByteToWideChar

WideCharToMultiByte

GetCurrentProcess

TerminateProcess

GetSystemDirectoryW

GetDiskFreeSpaceExW

GetCurrentProcessId

GetTickCount

GlobalFree

GlobalAlloc

MoveFileExW

WaitForMultipleObjects

OpenProcess

GetExitCodeProcess

CreateProcessW

GetProcAddress

LoadLibraryW

SetDllDirectoryW

FreeLibrary

GetLastError

GetCurrentThread

SetThreadPriority

WaitForSingleObject

CloseHandle

CreateEventW

ResetEvent

SetEvent

Sleep

GetOEMCP

GetACP

IsValidCodePage

FindFirstFileExW

GetFullPathNameW

RtlUnwind

SetStdHandle

HeapReAlloc

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

GetTimeFormatW

GetDateFormatW

SetFilePointerEx

GetConsoleCP

SetConsoleCtrlHandler

ExitProcess

PeekNamedPipe

GetDriveTypeW

GetModuleHandleExW

FreeLibraryAndExitThread

ExitThread

CreateThread

RtlPcToFileHeader

InterlockedFlushSList

InterlockedPushEntrySList

RtlUnwindEx

GetCPInfo

GetLocaleInfoW

LCMapStringW

CompareStringW

EncodePointer

GetStringTypeW

IsDebuggerPresent

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

WaitForSingleObjectEx

InitializeSListHead

HeapAlloc

EnterCriticalSection

LeaveCriticalSection

SwitchToThread

GetUserObjectInformationW

MessageBoxW

GetProcessWindowStation

CharUpperW

GetSystemMetrics

LookupPrivilegeValueW

AdjustTokenPrivileges

DuplicateTokenEx

CreateProcessAsUserW

CryptAcquireContextW

CryptCreateHash

CryptReleaseContext

CryptHashData

CryptDestroyHash

CryptGetHashParam

RegOpenKeyExW

RegQueryValueExW

RegCloseKey

RegEnumKeyExW

OpenThreadToken

AllocateAndInitializeSid

FreeSid

IsTextUnicode

GetExplicitEntriesFromAclW

DeleteAce

SetEntriesInAclW

CryptEnumProvidersW

CryptSignHashW

CryptDecrypt

CryptExportKey

CryptGetUserKey

CryptGetProvParam

CryptSetHashParam

CryptDestroyKey

ReportEventW

RegisterEventSourceW

DeregisterEventSource

CryptGenRandom

CryptAcquireContextA

CreateWellKnownSid

GetSidSubAuthority

GetSidSubAuthorityCount

AreAllAccessesGranted

MapGenericMask

ConvertStringSidToSidW

ConvertSidToStringSidW

RegUnLoadKeyW

RegSetValueExW

RegSaveKeyW

RegRestoreKeyW

RegQueryInfoKeyW

RegLoadAppKeyW

RegLoadKeyW

RegEnumValueW

RegEnumKeyW

RegDeleteValueW

RegDeleteKeyW

RegCreateKeyExW

TreeSetNamedSecurityInfoW

SetSecurityInfo

GetSecurityInfo

SetNamedSecurityInfoW

GetNamedSecurityInfoW

OpenProcessToken

SHGetFolderPathW

CoUninitialize

CoInitializeSecurity

CoSetProxyBlanket

PropVariantClear

CoInitializeEx

CoCreateInstance

VariantClear

SysStringLen

VariantInit

SysFreeString

SysAllocStringLen

SysAllocString

WNetGetConnectionW

WTSQueryUserToken

WTSFreeMemory

WTSEnumerateSessionsW

DestroyEnvironmentBlock

CreateEnvironmentBlock

NetWkstaGetInfo

NetApiBufferFree

GetProcessImageFileNameW

SfcIsFileProtected

GetFileVersionInfoW

VerQueryValueW

GetFileVersionInfoSizeW

BCryptDestroyKey

BCryptGetProperty

BCryptOpenAlgorithmProvider

BCryptFinishHash

BCryptCloseAlgorithmProvider

BCryptDestroyHash

BCryptVerifySignature

BCryptImportKeyPair

BCryptHashData

BCryptGenRandom

BCryptCreateHash

CryptCATCatalogInfoFromContext

CryptCATAdminAcquireContext

CryptCATAdminReleaseContext

CryptCATAdminReleaseCatalogContext

CryptCATAdminEnumCatalogFromHash

CryptCATAdminCalcHashFromFileHandle

WinVerifyTrust

AuthzInitializeResourceManager

AuthzAccessCheck

AuthzFreeResourceManager

AuthzFreeContext

AuthzInitializeContextFromSid

WSAPoll

inet_addr

ntohl

getaddrinfo

freeaddrinfo

WSASend

getsockname

WSASetLastError

WSAStartup

WSAGetLastError

closesocket

WSARecvFrom

WSARecv

socket

shutdown

WSASendTo

setsockopt

sendto

send

recvfrom

WSACleanup

listen

connect

bind

getsockopt

getpeername

ioctlsocket

accept

ntohs

htons

recv

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ