IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

SetEnvironmentVariableW

lstrcatW

GetEnvironmentVariableW

CompareFileTime

GetTempPathW

GetTempFileNameW

CreateFileW

GetFileSize

GetProcessHeap

HeapAlloc

ReadFile

HeapFree

LoadLibraryW

GetTickCount

OpenEventW

CloseHandle

FindResourceExW

SetEndOfFile

SetEnvironmentVariableA

CompareStringW

CompareStringA

SetStdHandle

WriteConsoleW

GetConsoleOutputCP

WriteConsoleA

GetLocaleInfoW

IsValidLocale

GetProcAddress

GetFileTime

GetComputerNameW

LocalFree

GetFileAttributesExW

lstrlenA

CreateEventW

DeleteFileW

WaitForSingleObject

LockResource

WideCharToMultiByte

LoadLibraryExW

FindResourceW

LoadResource

SizeofResource

MultiByteToWideChar

FreeLibrary

lstrcmpiW

DisableThreadLibraryCalls

GetModuleHandleW

InterlockedDecrement

InterlockedIncrement

GetLastError

DeleteCriticalSection

InitializeCriticalSection

LeaveCriticalSection

EnterCriticalSection

RaiseException

lstrlenW

GetModuleFileNameW

EnumSystemLocalesA

GetUserDefaultLCID

GetDateFormatA

GetTimeFormatA

GetStringTypeW

GetStringTypeA

SetConsoleCtrlHandler

FlushFileBuffers

GetConsoleMode

GetConsoleCP

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetEnvironmentStrings

FreeEnvironmentStringsA

GetStartupInfoA

GetFileType

SetHandleCount

LCMapStringW

LCMapStringA

GetStdHandle

VirtualAlloc

FatalAppExitA

VirtualFree

HeapCreate

GetCurrentThread

SetLastError

TlsFree

TlsSetValue

TlsAlloc

TlsGetValue

IsValidCodePage

GetOEMCP

GetCPInfo

ExitProcess

GetModuleHandleA

FileTimeToSystemTime

GetCommandLineA

InterlockedExchange

GetACP

GetLocaleInfoA

GetThreadLocale

GetVersionExA

HeapDestroy

HeapReAlloc

HeapSize

lstrcpynW

WriteFile

TerminateThread

SetEvent

CreateMutexA

lstrcpynA

GetCurrentThreadId

ProcessIdToSessionId

GetCurrentProcessId

CreateDirectoryW

lstrcpyW

GlobalUnlock

ReleaseMutex

GlobalLock

GlobalSize

GetSystemTime

CreateSemaphoreW

FindClose

FindNextFileW

SetFileAttributesW

SetFileTime

GetSystemTimeAsFileTime

FindFirstFileW

ReleaseSemaphore

ResetEvent

WaitForMultipleObjects

DuplicateHandle

GetCurrentProcess

SetThreadPriority

GetExitCodeThread

InterlockedExchangeAdd

Sleep

UnmapViewOfFile

MapViewOfFile

GetTimeZoneInformation

OpenProcess

CreateProcessW

GetVersionExW

FileTimeToDosDateTime

FileTimeToLocalFileTime

SystemTimeToFileTime

GetLocalTime

SetFilePointer

GetFileInformationByHandle

GlobalAlloc

GlobalFree

IsBadReadPtr

GlobalReAlloc

CreateMutexW

CreateFileA

CreateFileMappingW

lstrcpyA

OpenFileMappingW

ExpandEnvironmentStringsW

GetComputerNameExW

FindNextFileA

FindFirstFileA

LoadLibraryA

SetCurrentDirectoryA

GetModuleFileNameA

GetCurrentDirectoryA

QueryPerformanceCounter

QueryPerformanceFrequency

RtlUnwind

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

ExitThread

CreateThread

InterlockedCompareExchange

GetSystemMetrics

GetWindowDC

ReleaseDC

UnhookWindowsHookEx

GetDesktopWindow

SetWindowTextW

PostMessageW

LoadStringW

CharNextW

GetWindowRect

MsgWaitForMultipleObjects

DispatchMessageW

PeekMessageW

TranslateMessage

IsWindow

GetForegroundWindow

GetWindowThreadProcessId

UnregisterClassA

CharLowerW

GetWindowTextW

CallNextHookEx

GetParent

FindWindowExW

GetClassNameW

SetWindowsHookExW

CharLowerA

wsprintfW

CharLowerBuffW

CreateCompatibleBitmap

SelectObject

BitBlt

GetObjectW

GetDIBits

DeleteDC

DeleteObject

CreateCompatibleDC

CryptDeriveKey

CryptAcquireContextW

CryptCreateHash

CryptHashData

CryptGetHashParam

CryptDestroyHash

CryptReleaseContext

RegGetKeySecurity

RegOpenKeyW

RegSetKeySecurity

RegQueryValueExW

LookupAccountNameW

ConvertSidToStringSidW

RegQueryInfoKeyW

RegDeleteValueW

RegEnumKeyExW

RegSetValueExW

RegOpenKeyExW

RegCreateKeyExW

RegCloseKey

RegDeleteKeyW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

SetSecurityDescriptorSacl

GetSecurityDescriptorSacl

ConvertStringSecurityDescriptorToSecurityDescriptorW

CryptDestroyKey

AdjustTokenPrivileges

LookupPrivilegeValueW

CryptEncrypt

CryptDecrypt

OpenProcessToken

LookupAccountSidW

CoTaskMemRealloc

CoCreateInstance

CoUninitialize

CoInitializeEx

CoRevokeClassObject

CoRegisterPSClsid

CoRegisterClassObject

CoTaskMemAlloc

StringFromCLSID

CreateStreamOnHGlobal

GetHGlobalFromStream

CoTaskMemFree

StringFromGUID2

VariantChangeType

VarI4FromStr

SafeArrayCreateVector

SystemTimeToVariantTime

SafeArrayCreate

VariantInit

VarBstrCmp

VarBstrFromI4

SysStringByteLen

SysAllocStringByteLen

SysAllocStringLen

VariantClear

LoadRegTypeLi

VarUI4FromStr

RegisterTypeLi

UnRegisterTypeLi

LoadTypeLi

SysAllocString

SysFreeString

SysStringLen

SafeArrayGetElement

SafeArrayPutElement

SafeArrayDestroy

VarBstrCat

SafeArrayRedim

SafeArrayAccessData

SafeArrayUnaccessData

CreateErrorInfo

SetErrorInfo

GetErrorInfo

PathFileExistsW

PathStripPathW

PathFindFileNameW

PathRemoveFileSpecW

PathIsDirectoryW

PathAppendW

PathMatchSpecA

PathAppendA

PathFindFileNameA

PathRemoveFileSpecA

PathIsDirectoryA

PathSkipRootW

PathSkipRootA

PathMatchSpecW

SHCreateStreamOnFileW

GetFileVersionInfoW

VerQueryValueW

GetModuleFileNameExW

WTSOpenServerW

WTSFreeMemory

WTSCloseServer

WTSQuerySessionInformationW

NetWkstaUserEnum

NetApiBufferFree

UuidCreate

UuidToStringW

RpcStringFreeW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ