IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Direct3DCreate9Ex

D3DXMatrixTranspose

D3DXVec3Transform

DwmExtendFrameIntoClientArea

RtlAdjustPrivilege

RtlInitUnicodeString

RtlPcToFileHeader

NtLoadDriver

NtQuerySystemInformation

RtlWriteRegistryValue

RtlNtStatusToDosError

RtlCompareMemory

RtlVirtualUnwind

RtlCaptureContext

NtUnloadDriver

RtlLookupFunctionEntry

RtlCreateRegistryKey

RtlUnwind

RtlUnwindEx

SHDeleteKeyW

IsValidCodePage

FindNextFileW

FindFirstFileExW

FindClose

GetFileAttributesExW

CreateProcessW

GetExitCodeProcess

GetFileType

EnumSystemLocalesW

Sleep

DeviceIoControl

GetTickCount64

MultiByteToWideChar

GlobalAlloc

GlobalFree

GlobalLock

WideCharToMultiByte

GlobalUnlock

LoadLibraryA

QueryPerformanceFrequency

GetProcAddress

FreeLibrary

QueryPerformanceCounter

SetLastError

GetFullPathNameW

GetSystemDirectoryW

VirtualQuery

LoadLibraryExW

CreateFileA

CreateThread

GetConsoleWindow

SetConsoleOutputCP

Process32First

SetConsoleTextAttribute

GetStdHandle

CreateToolhelp32Snapshot

GetLastError

Process32Next

CloseHandle

GetFileSizeEx

ReadFile

HeapAlloc

HeapReAlloc

GetACP

GetProcessHeap

MapViewOfFile

UnmapViewOfFile

CreateFileMappingA

GetUserDefaultLCID

IsValidLocale

GetLocaleInfoW

LCMapStringW

CompareStringW

GetCommandLineW

GetCommandLineA

WriteFile

GetModuleFileNameW

ExitProcess

GetModuleHandleExW

FreeLibraryAndExitThread

ExitThread

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

RaiseException

InitializeSListHead

GetCurrentProcessId

GetStartupInfoW

IsDebuggerPresent

IsProcessorFeaturePresent

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

CreateEventW

ResetEvent

SetEvent

InitializeCriticalSectionAndSpinCount

GetCPInfo

GetStringTypeW

GetOEMCP

SetEndOfFile

GetEnvironmentStringsW

FreeEnvironmentStringsW

SetEnvironmentVariableW

SetStdHandle

CreateFileW

HeapSize

WriteConsoleW

HeapFree

WaitForSingleObject

GetConsoleOutputCP

FlushFileBuffers

GetModuleHandleW

ReadConsoleW

GetConsoleMode

GetCurrentThreadId

WaitForSingleObjectEx

GetExitCodeThread

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

TryEnterCriticalSection

DeleteCriticalSection

EncodePointer

DecodePointer

LCMapStringEx

GetSystemTimeAsFileTime

SetFilePointerEx

GetWindow

DispatchMessageA

DestroyWindow

SetWindowPos

ShowWindow

SetWindowLongA

DefWindowProcA

CreateWindowExA

TranslateMessage

LoadIconA

PeekMessageA

RegisterClassExA

UpdateWindow

SetForegroundWindow

LoadCursorA

ScreenToClient

EnumWindows

ClientToScreen

IsChild

GetForegroundWindow

SetCapture

SetCursor

GetClientRect

ReleaseCapture

SetCursorPos

GetCursorPos

OpenClipboard

CloseClipboard

EmptyClipboard

GetClipboardData

SetClipboardData

GetKeyState

GetKeyboardState

GetAsyncKeyState

mouse_event

GetWindowThreadProcessId

GetCapture

ImmGetContext

ImmReleaseContext

ImmSetCompositionWindow

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IofCompleteRequest

PsLookupProcessByProcessId

wcsstr

ProbeForRead

ProbeForWrite

IoGetCurrentProcess

KeStackAttachProcess

KeUnstackDetachProcess

ZwAllocateVirtualMemory

ZwFreeVirtualMemory

MmCopyVirtualMemory

__C_specific_handler

RtlInitUnicodeString

IoCreateDevice

IoCreateSymbolicLink

IoDeleteDevice

IoDeleteSymbolicLink

PsSetLoadImageNotifyRoutine

PsRemoveLoadImageNotifyRoutine

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

KeInitializeEvent

ZwLoadDriver

IoGetDeviceObjectPointer

ZwUnloadDriver

IoBuildDeviceIoControlRequest

ObfDereferenceObject

ObfReferenceObject

IofCallDriver

KeWaitForSingleObject

ExEnterCriticalRegionAndAcquireResourceExclusive

ExReleaseResourceAndLeaveCriticalRegion

MmSizeOfMdl

KeAcquireSpinLockRaiseToDpc

KeReleaseSpinLock

IoInitializeIrp

memchr

IofCompleteRequest

ProbeForWrite

ExIsResourceAcquiredExclusiveLite

IoAcquireCancelSpinLock

IoReleaseCancelSpinLock

IoGetRequestorProcess

IoGetCurrentProcess

MmMapLockedPagesSpecifyCache

KeSetEvent

PsGetCurrentProcessId

_stricmp

ExInitializeResourceLite

ExDeleteResourceLite

ZwDeviceIoControlFile

ObReferenceObjectByHandle

IoFileObjectType

RtlLengthRequiredSid

RtlSubAuthoritySid

RtlInitializeSid

SeQueryInformationToken

RtlEqualSid

ExAllocatePoolWithQuotaTag

MmUserProbeAddress

IoCreateDevice

_vsnwprintf

RtlInitUnicodeString

RtlQueryRegistryValues

KeClearEvent

IoGetRequestorProcessId

ExEnterCriticalRegionAndAcquireResourceShared

ExReleaseResourceLite

ExAcquireResourceExclusiveLite

KeDelayExecutionThread

KeWaitForMultipleObjects

IoAllocateErrorLogEntry

IoWriteErrorLogEntry

PsCreateSystemThread

ExQueueWorkItem

DbgPrint

ZwQuerySystemInformation

ExEventObjectType

ZwClose

KeInitializeTimer

KeInitializeDpc

KeSetTimer

KeCancelTimer

RtlInitializeGenericTable

RtlEnumerateGenericTable

RtlDeleteElementGenericTable

RtlInsertElementGenericTable

RtlLookupElementGenericTable

IoStartPacket

IoSetStartIoAttributes

IoStartNextPacket

IoCreateController

IoDeleteController

IoAttachDeviceToDeviceStack

ExAcquireFastMutexUnsafe

ExReleaseFastMutexUnsafe

IoWMIRegistrationControl

IoDetachDevice

IoInvalidateDeviceState

PoStartNextPowerIrp

PoCallDriver

PoSetPowerState

KeReadStateEvent

KeBugCheckEx

ExFreePoolWithTag

IoDeleteDevice

ExAllocatePoolWithTag

__C_specific_handler

WmiSystemControl

WmiCompleteRequest

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ