IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

getaddrinfo

freeaddrinfo

getnameinfo

inet_pton

WSAIoctl

WSAAddressToStringW

CryptDecodeObject

CryptMsgGetParam

CertCloseStore

CertFindCertificateInStore

CertFreeCertificateContext

CertNameToStrW

CertGetNameStringW

CryptQueryObject

CertOpenStore

CertEnumCertificatesInStore

CertDuplicateCertificateContext

CertGetCertificateContextProperty

CryptMsgClose

CryptGenRandom

CryptEnumProvidersW

CryptSignHashW

CryptDestroyHash

CryptCreateHash

CryptDecrypt

CryptExportKey

CryptGetUserKey

CryptGetProvParam

CryptSetHashParam

CryptDestroyKey

CryptReleaseContext

DuplicateToken

GetUserNameW

RegCloseKey

RegCreateKeyExW

RegDeleteKeyW

RegDeleteValueW

RegEnumKeyExW

RegEnumValueW

RegLoadKeyW

RegOpenKeyExW

RegQueryInfoKeyW

RegRestoreKeyW

RegSetValueExW

RegUnLoadKeyW

RegSaveKeyExW

CreateProcessAsUserW

OpenProcessToken

AdjustTokenPrivileges

DuplicateTokenEx

LookupPrivilegeValueW

AllocateAndInitializeSid

GetAce

GetAclInformation

GetSecurityDescriptorDacl

GetSecurityDescriptorOwner

InitializeAcl

InitializeSecurityDescriptor

IsValidSecurityDescriptor

IsValidSid

SetSecurityDescriptorDacl

SetSecurityDescriptorOwner

LookupAccountSidW

RegGetKeySecurity

RegSetKeySecurity

SetEntriesInAclW

GetExplicitEntriesFromAclW

GetNamedSecurityInfoW

SetNamedSecurityInfoW

GetInheritanceSourceW

FreeInheritedFromArray

ConvertSidToStringSidW

ConvertStringSidToSidW

GetUserNameA

CopySid

GetLengthSid

GetTokenInformation

LookupAccountNameW

CheckTokenMembership

FreeSid

SetKernelObjectSecurity

SetSecurityInfo

SetTokenInformation

CryptAcquireContextW

ReportEventW

RegisterEventSourceW

DeregisterEventSource

ChangeServiceConfig2W

CloseServiceHandle

ControlService

CreateServiceW

DeleteService

OpenSCManagerW

OpenServiceW

QueryServiceStatus

RegisterServiceCtrlHandlerW

SetServiceStatus

StartServiceCtrlDispatcherW

StartServiceW

RegQueryValueExW

ChangeServiceConfigW

EnumDependentServicesW

EnumServicesStatusW

QueryServiceConfigW

QueryServiceConfig2W

QueryServiceStatusEx

SetServiceObjectSecurity

CryptAcquireContextA

CreateProcessW

SetPriorityClass

GetPriorityClass

GetProcessId

SetThreadContext

OpenProcess

ReadProcessMemory

GetModuleHandleA

GetProcAddress

CreateJobObjectW

AssignProcessToJobObject

TerminateJobObject

K32GetModuleBaseNameW

K32GetModuleFileNameExW

K32GetProcessImageFileNameW

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

Thread32First

Thread32Next

DeviceIoControl

GetModuleHandleW

BackupRead

BackupSeek

CompareFileTime

GetSystemTime

SystemTimeToTzSpecificLocalTime

TzSpecificLocalTimeToSystemTime

FileTimeToSystemTime

SystemTimeToFileTime

GetDateFormatW

GetTimeFormatW

CreateFileMappingW

MapViewOfFile

UnmapViewOfFile

LocalAlloc

FlushFileBuffers

GetDiskFreeSpaceW

GetDriveTypeW

GetFileInformationByHandle

GetFileType

GetVolumeInformationW

GetVolumePathNameW

QueryDosDeviceW

ReadFile

SetFilePointerEx

WriteFile

GetVolumeNameForVolumeMountPointW

GetCompressedFileSizeW

HeapAlloc

HeapFree

GetProcessHeap

GetCurrentProcessId

VirtualAlloc

VirtualFree

lstrcmpiW

lstrlenW

IsBadReadPtr

IsBadWritePtr

lstrcmpA

lstrcpyW

RtlCaptureContext

GetEnvironmentVariableA

GetEnvironmentVariableW

GetCurrentDirectoryA

OutputDebugStringA

GetCurrentThread

SuspendThread

ResumeThread

GetThreadContext

GetVersionExA

FreeLibrary

GetModuleFileNameA

GetModuleFileNameW

LoadLibraryW

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

TryEnterCriticalSection

DeleteCriticalSection

OutputDebugStringW

SetErrorMode

Sleep

GetSystemTimes

GlobalMemoryStatusEx

GetSystemInfo

FormatMessageW

DefineDosDeviceW

GetVolumePathNamesForVolumeNameW

GetTickCount

RaiseException

CreateThread

TerminateThread

VirtualAllocEx

VirtualFreeEx

WriteProcessMemory

TerminateProcess

CreateRemoteThread

Module32FirstW

Module32NextW

K32GetModuleInformation

SetHandleInformation

CreatePipe

ConnectNamedPipe

DisconnectNamedPipe

SetNamedPipeHandleState

PeekNamedPipe

CreateNamedPipeW

WaitNamedPipeW

GetOverlappedResult

CancelIo

CreateEventW

IsDebuggerPresent

DebugBreak

SetEvent

ResetEvent

WaitForMultipleObjects

SetFilePointer

QueueUserWorkItem

GetCurrentThreadId

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetStdHandle

GetModuleHandleExW

SwitchToFiber

DeleteFiber

CreateFiber

QueryPerformanceCounter

GetSystemTimeAsFileTime

ConvertFiberToThread

CompareStringW

LoadLibraryA

GetConsoleMode

SetConsoleMode

ReadConsoleA

ReadConsoleW

FormatMessageA

InitializeCriticalSectionEx

SleepEx

QueryPerformanceFrequency

GetSystemDirectoryA

VerifyVersionInfoA

WaitForSingleObjectEx

ExpandEnvironmentStringsA

CreateFileMappingA

SwitchToThread

GetThreadTimes

DecodePointer

EncodePointer

GetStringTypeW

GetCurrentProcess

MoveFileExW

MoveFileW

CopyFileW

GetLastError

CloseHandle

SetFileAttributesW

RemoveDirectoryW

GetFileTime

GetFileAttributesExW

GetFileAttributesW

FindNextFileW

FindFirstFileW

FindClose

DeleteFileW

CreateFileW

CreateDirectoryW

GetShortPathNameW

GetLongPathNameW

GetFullPathNameW

GetProcessTimes

WaitForSingleObject

SetLastError

DuplicateHandle

LCMapStringW

GetLocaleInfoW

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsProcessorFeaturePresent

FindResourceW

SizeofResource

InitializeSListHead

OpenThread

GetExitCodeProcess

GetStartupInfoW

VirtualQuery

RtlUnwindEx

RtlPcToFileHeader

InterlockedPushEntrySList

InterlockedFlushSList

LoadLibraryExW

HeapSize

GetCurrentDirectoryW

ExpandEnvironmentStringsW

LocalFree

GetCommandLineW

VerifyVersionInfoW

GetVersionExW

VerSetConditionMask

WideCharToMultiByte

MultiByteToWideChar

GetComputerNameW

GetSystemDirectoryW

GetTempPathW

K32GetMappedFileNameW

GetTempFileNameW

GetCPInfo

WaitForMultipleObjectsEx

ConvertThreadToFiber

HeapValidate

WriteConsoleW

ExitProcess

SetConsoleCtrlHandler

ExitThread

FreeLibraryAndExitThread

GetCommandLineA

GetACP

GetConsoleCP

IsValidLocale

GetUserDefaultLCID

EnumSystemLocalesW

HeapReAlloc

HeapQueryInformation

SetStdHandle

SetCurrentDirectoryW

GetFullPathNameA

SetEndOfFile

GetTimeZoneInformation

FindFirstFileExA

FindFirstFileExW

FindNextFileA

IsValidCodePage

GetOEMCP

GetEnvironmentStringsW

FreeEnvironmentStringsW

SetEnvironmentVariableA

SetEnvironmentVariableW

LoadResource

LockResource

FindWindowExW

LoadStringW

FindWindowA

PostMessageW

PostThreadMessageW

FindWindowW

GetShellWindow

EnumWindows

GetWindowThreadProcessId

ExitWindowsEx

ShowWindow

GetSystemMetrics

SystemParametersInfoW

GetProcessWindowStation

GetUserObjectInformationW

MessageBoxW

SendMessageA

ShellExecuteExW

SHGetMalloc

SHGetSpecialFolderLocation

SHGetFolderPathW

ord51

CommandLineToArgvW

SHChangeNotify

ShellExecuteW

ord68

CoInitializeEx

CoUninitialize

CoCreateInstance

CoTaskMemFree

CoSetProxyBlanket

CoInitializeSecurity

SafeArrayGetUBound

SafeArrayDestroy

VariantClear

VariantInit

SafeArrayUnaccessData

SysFreeString

SysAllocString

GetErrorInfo

VariantChangeType

SetErrorInfo

CreateErrorInfo

SafeArrayGetLBound

SafeArrayAccessData

SysStringLen

VerQueryValueW

GetFileVersionInfoA

GetFileVersionInfoSizeA

InternetGetConnectedState

InternetCrackUrlW

PathIsSameRootW

PathIsRootW

PathIsRelativeW

PathIsPrefixW

PathIsDirectoryEmptyW

PathIsUNCW

PathIsNetworkPathW

PathIsURLW

AssocQueryStringW

UrlEscapeW

PathMakePrettyW

StrCmpIW

PathIsDirectoryW

PathGetDriveNumberW

PathQuoteSpacesW

PathGetArgsW

PathFindNextComponentW

PathFindFileNameW

PathFindExtensionW

PathFileExistsW

PathCommonPrefixW

PathCompactPathW

PathCanonicalizeW

PathBuildRootW

PathAppendW

PathAddBackslashW

StrDupW

StrCmpNIW

StrFormatByteSizeW

PathUnExpandEnvStringsW

PathUnquoteSpacesW

PathSearchAndQualifyW

PathRenameExtensionW

PathRemoveArgsW

PathRemoveFileSpecW

PathRemoveExtensionW

PathRemoveBlanksW

PathRemoveBackslashW

PathIsLFNFileSpecW

UnloadUserProfile

DestroyEnvironmentBlock

CreateEnvironmentBlock

LoadUserProfileW

GetProfilesDirectoryW

NetApiBufferFree

NetUserGetInfo

RtlVirtualUnwind

RtlLookupFunctionEntry

NtQueryKey

NtCreateKey

NtSetValueKey

NtDeleteValueKey

NtOpenKey

NtUnloadDriver

NtDeleteKey

NtLoadDriver

RtlInitUnicodeString

CryptCATAdminReleaseCatalogContext

CryptCATCatalogInfoFromContext

CryptCATAdminCalcHashFromFileHandle

CryptCATAdminEnumCatalogFromHash

WinVerifyTrust

CryptCATAdminAcquireContext

CryptCATAdminReleaseContext

WSAGetLastError

inet_ntoa

getsockname

getsockopt

ntohs

gethostbyname

gethostname

sendto

recvfrom

htonl

select

__WSAFDIsSet

getpeername

socket

setsockopt

listen

connect

closesocket

bind

accept

WSASetLastError

send

recv

getservbyname

inet_addr

htons

shutdown

WSACleanup

WSAStartup

WNetGetConnectionW

WinHttpOpen

WinHttpSetOption

WinHttpOpenRequest

WinHttpSendRequest

WinHttpCloseHandle

WinHttpConnect

WinHttpReadData

WinHttpWriteData

WinHttpReceiveResponse

WinHttpQueryHeaders

WinHttpQueryDataAvailable

GetAdaptersAddresses

WTSFreeMemory

WTSQueryUserToken

WTSEnumerateSessionsW

BCryptGenRandom

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ