IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

_initterm

_initterm_e

_register_thread_local_exe_atexit_callback

_c_exit

_o__purecall

_o__register_onexit_function

_o__seh_filter_exe

_o__set_app_type

_o__set_fmode

_o__set_new_mode

_o__wcsicmp

_o__wcsnicmp

_o___std_exception_copy

_o__wcstoui64

_o__wtoi

_o__wtoi64

memmove

_o_exit

_o_free

_o_isspace

_o_malloc

_o_terminate

_o_tolower

_o_towlower

_o_wcscat_s

_o_wcscpy_s

_o_wcsncpy_s

_o_wcstol

__CxxFrameHandler3

__current_exception

__current_exception_context

_CxxThrowException

_o___p__commode

_o__invalid_parameter_noinfo

_o__initialize_wide_environment

_o__initialize_onexit_table

_o___p___wargv

_o__get_initial_wide_environment

_o___p___argc

_o__exit

_o__errno

_o__crt_atexit

_o__configure_wide_argv

_o__configthreadlocale

_o__cexit

_o__callnewh

_o___stdio_common_vswscanf

_o___stdio_common_vswprintf_s

_o___stdio_common_vswprintf

_o___stdio_common_vsnwprintf_s

_o___stdio_common_vsnprintf_s

wcsrchr

wcsstr

wcschr

__std_terminate

__C_specific_handler

__CxxFrameHandler4

_o___std_exception_destroy

memcmp

memcpy

wcsncmp

memset

wcscmp

wcsnlen

CryptReleaseContext

CryptAcquireContextW

LoadLibraryExW

GetModuleFileNameA

GetProcAddress

FreeLibrary

GetModuleHandleExW

GetModuleHandleExA

GetModuleHandleW

LoadStringW

RegSetValueExW

RegCloseKey

RegEnumKeyExW

RegOpenKeyExW

RegSetKeySecurity

RegDeleteTreeW

RegGetKeySecurity

RegQueryInfoKeyW

RegQueryValueExW

RegCreateKeyExW

RegGetValueW

RegEnumValueW

RegDeleteValueW

HeapFree

GetProcessHeap

HeapAlloc

GetEnvironmentVariableW

SearchPathW

GetCommandLineW

ExpandEnvironmentStringsW

SetEnvironmentVariableW

EventRegister

EventUnregister

EventWriteTransfer

EventSetInformation

SetUnhandledExceptionFilter

SetLastError

UnhandledExceptionFilter

SetErrorMode

GetLastError

OpenThread

GetCurrentThreadId

GetPriorityClass

SetPriorityClass

SetThreadPriority

CreateThread

GetThreadId

GetThreadPriority

GetCurrentProcess

GetCurrentProcessId

GetProcessId

GetExitCodeProcess

CreateProcessW

OpenProcessToken

TerminateProcess

GetProcessTimes

GetCurrentThread

WakeByAddressSingle

InitOnceComplete

Sleep

InitOnceBeginInitialize

WaitOnAddress

GetSystemDefaultLangID

FormatMessageW

GetThreadUILanguage

GetUserGeoID

LCMapStringW

IsDebuggerPresent

OutputDebugStringW

DebugBreak

CloseHandle

DuplicateHandle

RtlLookupFunctionEntry

RtlCompareMemory

RtlCaptureContext

RtlVirtualUnwind

OpenProcess

IsProcessorFeaturePresent

SetProcessMitigationPolicy

GetThreadTimes

GetThreadContext

QueryPerformanceFrequency

QueryPerformanceCounter

GetSystemInfo

GetTickCount64

GetSystemTimeAsFileTime

GlobalMemoryStatusEx

GetSystemDirectoryW

GetWindowsDirectoryW

GetTickCount

GetVersionExW

InitializeSListHead

OpenSemaphoreW

DeleteCriticalSection

InitializeCriticalSectionEx

EnterCriticalSection

AcquireSRWLockShared

AcquireSRWLockExclusive

LeaveCriticalSection

CreateEventW

TryEnterCriticalSection

ReleaseMutex

ReleaseSemaphore

CreateSemaphoreExW

ResetEvent

ReleaseSRWLockShared

CreateMutexExW

CreateMutexW

OpenMutexW

OpenEventW

WaitForSingleObject

ReleaseSRWLockExclusive

WaitForSingleObjectEx

InitializeCriticalSectionAndSpinCount

SetEvent

EqualSid

AllocateAndInitializeSid

GetSidSubAuthorityCount

GetTokenInformation

CheckTokenMembership

GetSidSubAuthority

CopySid

CreateWellKnownSid

GetLengthSid

IsValidSid

GetKernelObjectSecurity

GetSecurityDescriptorDacl

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

FreeSid

SetKernelObjectSecurity

QueryDosDeviceW

GetDriveTypeW

GetLogicalDriveStringsW

GetDiskFreeSpaceExW

GetFileSizeEx

SetFileAttributesW

DeleteFileW

GetFileAttributesExW

FileTimeToLocalFileTime

GetFileAttributesW

CreateDirectoryW

CreateFileW

GetFinalPathNameByHandleW

GetLongPathNameW

FindFirstFileW

FindNextFileW

WriteFile

ReadFile

FindClose

CompareFileTime

GetSystemWow64DirectoryW

IsWow64Process2

K32GetModuleFileNameExW

QueryFullProcessImageNameW

K32EnumProcessModules

CompareStringOrdinal

GetStringTypeExW

ProgIDFromCLSID

CoSetProxyBlanket

CLSIDFromString

CoUnmarshalInterface

CoTaskMemAlloc

CoUninitialize

CoTaskMemFree

CoInitializeEx

CoCreateInstance

WaitForThreadpoolWaitCallbacks

CreateThreadpoolTimer

CloseThreadpoolTimer

WaitForThreadpoolTimerCallbacks

SetThreadpoolTimer

SetThreadpoolWait

CloseThreadpoolWait

CreateThreadpoolWait

VerQueryValueW

GetFileVersionInfoSizeExW

GetFileVersionInfoExW

UnmapViewOfFile

CreateFileMappingW

MapViewOfFile

VirtualQuery

ReadProcessMemory

OpenFileMappingW

VirtualFree

VirtualAlloc

VirtualQueryEx

GetNativeSystemInfo

GetProductInfo

OpenSCManagerW

StartServiceW

CloseServiceHandle

OpenServiceW

QueryServiceConfigW

FileTimeToSystemTime

PathCchStripToRoot

SetProcessInformation

GetTempPath2W

UuidCreate

GetUserDefaultUILanguage

RtlFreeHeap

RtlAllocateHeap

RtlNtStatusToDosErrorNoTeb

RtlCompareUnicodeString

NtQueryEvent

NtOpenEvent

RtlGetVersion

RtlImageNtHeaderEx

NtQueryInformationProcess

NtQueryInformationThread

NtDeviceIoControlFile

NtAllocateVirtualMemory

NtFreeVirtualMemory

NtSetSystemInformation

RtlNtStatusToDosError

EtwUnregisterTraceGuids

EtwGetTraceEnableFlags

EtwTraceMessage

EtwGetTraceLoggerHandle

EtwGetTraceEnableLevel

RtlAdjustPrivilege

RtlGetUnloadEventTraceEx

NtSetInformationFile

PssNtCaptureSnapshot

DbgPrint

ZwQueryInformationThread

NtQuerySystemInformation

RtlSecondsSince1970ToTime

NtQueryInformationToken

NtQueryObject

RtlInitUnicodeString

DbgPrintEx

ZwQueryWnfStateNameInformation

ZwUpdateWnfStateData

EtwEventWriteNoRegistration

NtWaitForSingleObject

RtlAllocateAndInitializeSid

NtAlpcConnectPort

EtwRegisterTraceGuidsW

NtAlpcSendWaitReceivePort

RtlFreeSid

NtCreateFile

NtSystemDebugControl

NtPowerInformation

RtlCreateProcessReflection

NtResumeProcess

NtClose

RtlSetThreadErrorMode

NtSuspendProcess

WerpHashApplicationParameters

WerpSetEventName

WerReportSetParameter

WerpSetDynamicParameter

WerpSetReportNamespaceParameter

WerpInitializeImageCache

WerpAuxmdMapFile

WerpAuxmdHashVaRanges

WerpAuxmdFreeCopyBuffer

WerpAuxmdDumpRegisteredBlocks

WerpAuxmdDumpProcessImages

WerpAuxmdInitialize

WerpRestartApplication

WerpIsTransportAvailable

WerReportSetUIOption

WerpSetReportFlags

WerpGetReportFlags

WerpStitchedMinidumpVmPostReadCallback

WerpStitchedMinidumpVmPreReadCallback

WerpStitchedMinidumpVmQueryCallback

WerpResetTransientImageCacheStatistics

WerpTraceImageCacheStatistics

WerpTraceUnmappedVaRangesStatistics

WerpTraceAuxMemDumpStatistics

WerpTraceSnapshotStatistics

WerpForceDeferredCollection

WerpFlushImageCache

WerpFreeUnmappedVaRanges

WerpAuxmdFree

WerReportCloseHandle

WerpFreeString

WerpAddMemoryBlock

WerpGetExtendedDiagData

WerpAddRegisteredDataToReport

WerReportAddDump

WerpAddAppCompatData

WerpGetFileByIndex

WerpGetNumFiles

WerReportSubmit

WerpSetReportIsFatal

WerpSetCallBack

WerpGetReportId

WerReportCreate

WerpSetProcessTimelines

WerpSetTelemetryAppParams

WerpSetIntegratorReportId

WerpCreateIntegratorReportId

WerpAddFile

WerpReportCancel

WerpSetReportApplicationIdentity

WerpReportSprintfParameter

WerpSetTelemetryKernelParams

WerpSetIptEnabled

WerpPromptUser

WerpSetTtdStatus

WerReportAddFile

WerpReserveMachineQueueReportDir

WerpCreateMachineStore

WerpSetExitListeners

WerpAddTerminationReason

WerpValidateReportKey

WerpGetStorePath

RegisterWaitChainCOMCallback

CloseThreadWaitChainSession

OpenThreadWaitChainSession

WerpUnmapProcessViews

GetThreadWaitChain

SymInitialize

SymGetModuleBase64

StackWalk64

SymFunctionTableAccess64

SymSetExtendedOption

SymGetModuleInfoW64

SymCleanup

MiniDumpWriteDump

TelGetWerTelemetryMode

CoGetCallState

CoGetActivationState

WerGetFlags

GetApplicationRestartSettings

I_QueryTagInformation

ApiSetQueryApiSetPresence

ResolveDelayLoadedAPI

DelayLoadFailureHook

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertSidToStringSidW

IsWow64Process

WaitForMultipleObjects

LocalFree

CheckRemoteDebuggerPresent

PssWalkMarkerCreate

PssQuerySnapshot

PssDuplicateSnapshot

PssWalkMarkerFree

PowerSettingUnregisterNotification

PowerSettingRegisterNotification

QueryUnbiasedInterruptTime

LoadLibraryW

StopTraceW

StartTraceW

BCryptDestroyHash

BCryptFinishHash

BCryptHashData

BCryptCreateHash

CM_Locate_DevNodeW

CM_Get_DevNode_PropertyW

CM_Get_Device_ID_ListW

CM_MapCrToWin32Err

CM_Get_Device_ID_List_SizeW

MoveFileExW

RegSetKeyValueW

EnableTrace

QueryTraceW

RegDeleteKeyA

RegDeleteKeyW

RegOpenKeyW

SetEntriesInAclW

Process32FirstW

Thread32First

Module32FirstW

Module32NextW

Thread32Next

CreateToolhelp32Snapshot

Process32NextW

GetProcessIoCounters

CommandLineToArgvW

BuildSecurityDescriptorW

WerpInitiateCrashReporting

SysFreeString

SysAllocString

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ