IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

CreateProcessWithLogonW

LookupAccountSidW

CloseServiceHandle

OpenSCManagerW

OpenServiceW

StartServiceW

QueryServiceStatus

WinHttpSendRequest

WinHttpSetOption

WinHttpReceiveResponse

WinHttpQueryOption

WinHttpQueryHeaders

WinHttpOpenRequest

WinHttpReadData

WinHttpAddRequestHeaders

WinHttpSetTimeouts

WinHttpGetIEProxyConfigForCurrentUser

WinHttpOpen

WinHttpGetProxyForUrl

WinHttpCrackUrl

WinHttpCloseHandle

WinHttpConnect

CoGetClassObject

CoCreateGuid

CoInitializeSecurity

CoSetProxyBlanket

CoCreateInstance

CoTaskMemFree

CoInitializeEx

CoUninitialize

SysStringLen

VariantClear

SysAllocString

SysFreeString

ObtainUserAgentString

RpcAsyncCompleteCall

RpcBindingFree

RpcAsyncInitializeHandle

NdrAsyncClientCall

RtlOpenCurrentUser

NtFreeVirtualMemory

NtAllocateVirtualMemory

NtProtectVirtualMemory

NtReadVirtualMemory

NtQueryVirtualMemory

NtCreateThread

RtlSubAuthoritySid

RtlLengthRequiredSid

RtlEqualSid

RtlCopySid

NtSetEvent

RtlLengthSid

RtlCreateAcl

NtCreateProcess

NtOpenProcessToken

NtSetInformationToken

NtQueryInformationToken

RtlSubAuthorityCountSid

RtlGetSaclSecurityDescriptor

RtlGetGroupSecurityDescriptor

RtlGetControlSecurityDescriptor

RtlLengthSecurityDescriptor

RtlGetDaclSecurityDescriptor

RtlMakeSelfRelativeSD

RtlGetOwnerSecurityDescriptor

NtAdjustPrivilegesToken

NtDuplicateToken

NtQuerySecurityObject

NtSetSecurityObject

NtFilterToken

LdrUnlockLoaderLock

LdrLockLoaderLock

NtQuerySystemInformation

wcsncmp

LdrUnloadDll

RtlReAllocateHeap

_snwprintf

NtQueueApcThread

RtlRemoveVectoredExceptionHandler

RtlAddVectoredExceptionHandler

NtOpenTimer

NtCreateTimer

NtQueryAttributesFile

NtCreateIoCompletion

NtOpenMutant

NtCreateKeyedEvent

NtOpenKeyedEvent

NtOpenIoCompletion

NtOpenSymbolicLinkObject

NtOpenEvent

NtOpenDirectoryObject

NtDeleteFile

RtlNtStatusToDosErrorNoTeb

NtCreateEvent

NtCreateNamedPipeFile

NtCreateSemaphore

NtCreateMutant

NtQueryFullAttributesFile

NtOpenSemaphore

RtlPrefixUnicodeString

RtlSetLastWin32ErrorAndNtStatusFromNtStatus

RtlAllocateHeap

RtlFreeHeap

NtOpenFile

LdrLoadDll

NtOpenKey

NtResumeThread

RtlInitializeCriticalSection

RtlLeaveCriticalSection

_chkstk

memset

memcpy

_allmul

_aulldvrm

_aullshr

_allshl

RtlDeleteCriticalSection

RtlEnterCriticalSection

NtReadFile

NtFlushBuffersFile

NtCreateFile

NtUnlockFile

NtQueryDirectoryFile

NtQueryInformationFile

NtSetInformationFile

wcsncpy

NtLockFile

NtWriteFile

NtCreateSection

NtOpenSection

NtUnmapViewOfSection

NtMapViewOfSection

NtSetInformationProcess

NtQueryInformationProcess

NtOpenProcess

RtlEqualUnicodeString

NtQueryInformationJobObject

NtIsProcessInJob

NtAssignProcessToJobObject

NtSetInformationJobObject

NtCreateJobObject

NtTerminateProcess

NtSuspendProcess

NtDeleteKey

NtSetValueKey

NtQueryValueKey

NtNotifyChangeKey

NtCreateKey

NtDeleteValueKey

RtlInitUnicodeString

NtEnumerateKey

NtEnumerateValueKey

RtlGetNativeSystemInformation

RtlVerifyVersionInfo

VerSetConditionMask

NtDuplicateObject

NtQueryObject

NtClose

NtSetInformationObject

NtOpenThread

NtSetInformationThread

NtQueryInformationThread

CsrClientCallServer

NtTerminateThread

RtlExitUserThread

NtReleaseMutant

NtDelayExecution

NtPulseEvent

NtQuerySemaphore

NtClearEvent

NtWaitForSingleObject

NtQueryEvent

NtReleaseSemaphore

LdrAddRefDll

NtWaitForMultipleObjects

RtlInitializeSid

_aulldiv

CreateEventW

CreateMutexW

CreateSemaphoreW

OpenMutexW

CreateProcessW

GetSystemWow64DirectoryW

GlobalFree

GetTempFileNameW

GetTempPathW

CreateFileW

DeleteAtom

FindAtomW

AddAtomW

GetTickCount

GetWindowsDirectoryW

GetSystemDirectoryW

ExitProcess

IsBadReadPtr

OpenSemaphoreW

SearchPathW

ResumeThread

CloseDesktop

CloseWindowStation

GetWindowThreadProcessId

GetForegroundWindow

MsgWaitForMultipleObjects

SetActiveWindow

GetMessageW

PostQuitMessage

IsWindowEnabled

SetFocus

TranslateMessage

PeekMessageW

ShowWindow

IsWindow

GetSystemMetrics

IsWindowVisible

EnableWindow

ValidateRect

DispatchMessageW

GetSystemMenu

DialogBoxIndirectParamW

GetWindowTextW

EnableMenuItem

GetDlgItem

EndDialog

SendDlgItemMessageW

MessageBoxW

LockSetForegroundWindow

SendInput

SetForegroundWindow

GetParent

AttachThreadInput

BringWindowToTop

SystemParametersInfoW

SetWindowPos

GetWindow

UnregisterClassW

RegisterClassExW

SetClassLongW

CreateWindowExW

DefWindowProcW

CreateDesktopW

SetProcessWindowStation

GetThreadDesktop

GetProcessWindowStation

OpenDesktopW

EnumDesktopsW

EnumWindowStationsW

SetThreadDesktop

OpenWindowStationW

GetWindowLongW

SetWindowLongW

SendMessageTimeoutW

DestroyWindow

PostMessageW

FindWindowW

FindWindowExW

MessageBoxTimeoutW

MessageBoxIndirectW

NetApiBufferFree

NetLocalGroupGetMembers

DnsRecordListFree

DnsQuery_W

SHGetFolderPathW

ord15

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ