IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

SendSAS

WTSQuerySessionInformationW

WTSEnumerateSessionsA

WTSFreeMemory

LocalFree

GetExitCodeProcess

ConnectNamedPipe

LocalAlloc

CreateFileW

FlushFileBuffers

OpenProcess

GetCurrentProcess

CreateDirectoryW

WTSGetActiveConsoleSessionId

VirtualAllocEx

WriteProcessMemory

GetModuleHandleA

GetProcAddress

QueueUserAPC

ResumeThread

GetModuleHandleExA

GetCurrentThreadId

CopyFileExW

GetLogicalProcessorInformation

GetSystemInfo

SetFilePointerEx

GlobalLock

GlobalSize

GlobalUnlock

WaitForSingleObject

MultiByteToWideChar

GlobalAlloc

GlobalFree

GetUserDefaultLocaleName

TerminateProcess

SetConsoleMode

CreateSemaphoreA

SetConsoleCtrlHandler

QueryPerformanceFrequency

GetModuleHandleW

GetQueuedCompletionStatusEx

SetLastError

GetFinalPathNameByHandleW

TryAcquireSRWLockExclusive

PostQueuedCompletionStatus

ReadFile

GetOverlappedResult

WriteFile

CancelIoEx

CreateIoCompletionPort

SetFileCompletionNotificationModes

CreateNamedPipeW

LoadLibraryA

FreeLibrary

LoadLibraryExA

CreateFileMappingW

MapViewOfFile

OpenFileMappingW

GetCurrentThread

WriteConsoleW

GetCurrentDirectoryW

WaitForSingleObjectEx

CreateMutexA

ReleaseMutex

GetEnvironmentVariableW

RtlLookupFunctionEntry

SetEnvironmentVariableW

GetTempPathW

GetModuleFileNameW

GetCommandLineW

GetFileInformationByHandle

GetFullPathNameW

FindNextFileW

FindFirstFileW

GetEnvironmentStringsW

FreeEnvironmentStringsW

CompareStringOrdinal

GetSystemDirectoryW

GetWindowsDirectoryW

CreateProcessW

GetFileAttributesW

DuplicateHandle

CreateThread

ReadFileEx

SleepEx

WriteFileEx

GetCurrentProcessId

CreateEventW

CancelIo

ExitProcess

GetSystemTimeAsFileTime

RtlCaptureContext

MoveFileExW

CreateSymbolicLinkW

SetHandleInformation

SetThreadErrorMode

LoadLibraryExW

GetComputerNameExW

VirtualQuery

ProcessIdToSessionId

RemoveDirectoryW

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

RtlVirtualUnwind

GetFileSize

GetFileTime

SetFilePointer

ResetEvent

InitializeCriticalSectionEx

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

WakeConditionVariable

SleepConditionVariableCS

InitializeConditionVariable

TryEnterCriticalSection

WakeAllConditionVariable

SetThreadPriority

InitializeCriticalSection

FindClose

FindFirstFileExW

GetFileSizeEx

GetConsoleOutputCP

ReadConsoleW

OutputDebugStringW

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

GetLocaleInfoW

LCMapStringW

CompareStringW

QueryPerformanceCounter

DeleteFileW

FormatMessageW

lstrlenW

ReleaseSemaphore

WaitForMultipleObjectsEx

SetEvent

SwitchToThread

CreateEventA

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

GetTimeZoneInformation

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

GetFileInformationByHandleEx

GetConsoleMode

GetStdHandle

Sleep

HeapReAlloc

GetLastError

SetThreadStackGuarantee

AddVectoredExceptionHandler

CloseHandle

HeapFree

ReleaseSRWLockShared

AcquireSRWLockShared

GetCommandLineA

GetFileType

GetModuleHandleExW

HeapAlloc

FreeLibraryAndExitThread

ExitThread

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

InitializeCriticalSectionAndSpinCount

RtlUnwind

RaiseException

RtlPcToFileHeader

RtlUnwindEx

GetCPInfo

GetStringTypeW

LCMapStringEx

DecodePointer

EncodePointer

WideCharToMultiByte

GetStartupInfoW

IsDebuggerPresent

InitializeSListHead

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

UnmapViewOfFile

SetFileTime

GetLogicalDrives

GetProcessHeap

IsValidCodePage

GetACP

GetOEMCP

SetStdHandle

HeapSize

WaitForMultipleObjects

SetEndOfFile

CoTaskMemAlloc

CoCreateInstance

CoTaskMemFree

CoUninitialize

CoInitializeEx

PropVariantClear

OleInitialize

OleUninitialize

OleSetClipboard

OleIsCurrentClipboard

ReleaseStgMedium

OleGetClipboard

CreateProcessAsUserW

RegisterServiceCtrlHandlerExW

SetServiceStatus

InitializeSecurityDescriptor

SetEntriesInAclW

AllocateAndInitializeSid

FreeSid

SetSecurityDescriptorDacl

RegOpenKeyExW

CreateProcessWithTokenW

ImpersonateLoggedOnUser

DuplicateTokenEx

EqualSid

AdjustTokenPrivileges

LookupPrivilegeValueW

SystemFunction036

CreateProcessWithLogonW

StartServiceCtrlDispatcherW

GetTokenInformation

OpenProcessToken

CloseServiceHandle

OpenServiceW

OpenSCManagerW

GetUserNameW

RegCloseKey

RegQueryValueExW

SendMessageW

CreatePopupMenu

AppendMenuW

DestroyMenu

RegisterWindowMessageA

GetWindowLongPtrW

PostMessageW

SetForegroundWindow

TrackPopupMenu

DefWindowProcW

GetRawInputData

ValidateRect

PeekMessageW

PostThreadMessageW

GetUpdateRect

MsgWaitForMultipleObjectsEx

AttachThreadInput

GetKeyboardState

ToUnicodeEx

DestroyWindow

EnumDisplayDevicesW

EnumDisplaySettingsExW

ExitWindowsEx

MapVirtualKeyA

OpenInputDesktop

SetThreadDesktop

CloseDesktop

GetThreadDesktop

GetUserObjectInformationA

PeekMessageA

SendMessageA

PostMessageA

GetAsyncKeyState

InvalidateRgn

SetClipboardViewer

ChangeClipboardChain

RegisterClipboardFormatA

RegisterClipboardFormatW

CountClipboardFormats

EnumClipboardFormats

GetClipboardFormatNameA

SetWindowPos

SetWindowTextW

ShowWindow

GetMessageW

DispatchMessageW

OpenClipboard

SendInput

GetForegroundWindow

GetWindowThreadProcessId

CopyIcon

DestroyIcon

CreateIconFromResourceEx

LookupIconIdFromDirectoryEx

RegisterRawInputDevices

SetWindowLongPtrW

CreateWindowExW

RegisterClassExW

BlockInput

SetClipboardData

EmptyClipboard

CloseClipboard

GetClipboardData

IsClipboardFormatAvailable

GetKeyboardLayout

MapVirtualKeyExW

VkKeyScanExW

GetKeyState

GetSystemMetrics

GetMenu

GetWindowLongW

AdjustWindowRectEx

RedrawWindow

GetClipboardOwner

RegisterClassW

TranslateMessage

LockWorkStation

GetCursorInfo

PostThreadMessageA

FindWindowA

DefWindowProcA

SetWindowsHookExA

GetMessageA

DispatchMessageA

UnhookWindowsHookEx

CallNextHookEx

LoadCursorA

RegisterClassExA

CreateWindowExA

FindWindowExA

GetCursorPos

GetIconInfo

GetDC

ReleaseDC

BCryptGenRandom

BCryptOpenAlgorithmProvider

BCryptCloseAlgorithmProvider

D3D11CreateDevice

CreateDXGIFactory1

DeleteObject

GetDIBits

BitBlt

CreateCompatibleBitmap

CreateDCW

CreateCompatibleDC

GetBitmapBits

SelectObject

DeleteDC

GetObjectA

SendARP

GetAdaptersAddresses

NtDeviceIoControlFile

RtlNtStatusToDosError

NtCancelIoFileEx

NtCreateFile

Shell_NotifyIconW

ShellExecuteW

SHGetKnownFolderPath

SHAddToRecentDocs

ShellExecuteExW

timeEndPeriod

timeGetDevCaps

timeBeginPeriod

WSASend

recv

getpeername

recvfrom

getsockname

getaddrinfo

WSASocketW

WSACleanup

sendto

accept

listen

ioctlsocket

socket

getsockopt

shutdown

WSAGetLastError

connect

closesocket

bind

setsockopt

send

WSAStartup

WSAIoctl

freeaddrinfo

DestroyEnvironmentBlock

CreateEnvironmentBlock

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ