IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

_callnewh

_onexit

??0exception@@QEAA@AEBQEBDH@Z

__dllonexit

?what@exception@@UEBAPEBDXZ

_unlock

_lock

_CxxThrowException

__CxxFrameHandler3

memmove_s

??0exception@@QEAA@AEBQEBD@Z

_XcptFilter

wcsstr

qsort

??1type_info@@UEAA@XZ

_amsg_exit

_vscwprintf

_errno

_beginthreadex

wcsncmp

memmove

_wcsicmp

towupper

_wcsnicmp

__wgetmainargs

?terminate@@YAXXZ

iswspace

wcsrchr

wcstoul

iswdigit

memcmp

_vsnprintf

_purecall

wcscat_s

_vsnprintf_s

malloc

realloc

free

??0exception@@QEAA@XZ

memcpy_s

??0exception@@QEAA@AEBV0@@Z

??1exception@@UEAA@XZ

_vsnwprintf

__C_specific_handler

_commode

__set_app_type

exit

memset

_exit

_cexit

__setusermatherr

_initterm

_wcmdln

_fmode

wcstok

memcpy

wcscmp

GetErrorInfo

SysAllocString

LoadRegTypeLi

VariantClear

VariantCopy

VariantChangeType

VarUI4FromStr

SysAllocStringLen

VariantInit

SysStringLen

SysFreeString

FormatMessageW

ReleaseMutex

SetEvent

CancelWaitableTimer

WaitForSingleObjectEx

CreateWaitableTimerExW

CreateMutexExW

CreateSemaphoreExW

OpenSemaphoreW

InitializeCriticalSection

SetWaitableTimer

WaitForMultipleObjectsEx

ResetEvent

EnterCriticalSection

CreateEventW

ReleaseSemaphore

DeleteCriticalSection

InitializeCriticalSectionAndSpinCount

WaitForSingleObject

LeaveCriticalSection

SetUnhandledExceptionFilter

GetLastError

SetErrorMode

RaiseException

SetLastError

UnhandledExceptionFilter

InitOnceBeginInitialize

Sleep

InitOnceComplete

ResumeThread

OpenThreadToken

SetThreadPriority

CreateThread

GetStartupInfoW

GetCurrentThread

OpenProcessToken

GetCurrentProcessId

GetCurrentProcess

TerminateProcess

OpenThread

GetCurrentThreadId

CoTaskMemRealloc

CoCreateGuid

CoGetClassObject

CoImpersonateClient

CoTaskMemFree

CoDisconnectContext

CoRegisterClassObject

CLSIDFromString

CoFreeUnusedLibraries

CoTaskMemAlloc

CoRevertToSelf

CoGetObjectContext

CoSetProxyBlanket

CoUninitialize

CoInitializeEx

CoInitializeSecurity

CoCreateInstance

StringFromCLSID

CoRevokeClassObject

CompareStringW

MultiByteToWideChar

CloseHandle

VirtualAlloc

VirtualQuery

VirtualProtect

GetSystemTimeAsFileTime

GetVersionExW

GetSystemDirectoryW

GetSystemWindowsDirectoryW

GetTickCount64

GetTickCount

GetSystemInfo

GetComputerNameExW

IsDebuggerPresent

DebugBreak

OutputDebugStringW

FreeLibrary

GetModuleHandleExW

GetModuleHandleW

GetProcAddress

LoadStringW

GetModuleFileNameA

FindResourceExW

LoadLibraryExW

GetModuleFileNameW

LoadResource

SizeofResource

HeapAlloc

HeapFree

GetProcessHeap

HeapSetInformation

CharPrevW

CharNextW

RegEnumKeyExW

RegCreateKeyExW

RegOpenKeyExW

RegSetValueExW

RegCloseKey

RegEnumValueW

RegDeleteValueW

RegQueryInfoKeyW

RegQueryValueExW

RegDeleteTreeW

lstrcpynW

lstrcmpiW

RtlNtStatusToDosError

RtlAdjustPrivilege

EtwTraceMessage

NtThawRegistry

NtFreezeRegistry

NtClose

NtCreateSymbolicLinkObject

RtlInitUnicodeString

NtThawTransactions

NtFreezeTransactions

NtQuerySystemInformation

RtlNtStatusToDosErrorNoTeb

NtQueryVolumeInformationFile

EtwUnregisterTraceGuids

EtwRegisterTraceGuidsW

EtwGetTraceEnableFlags

EtwGetTraceEnableLevel

EtwGetTraceLoggerHandle

StartServiceCtrlDispatcherW

RegisterServiceCtrlHandlerExW

SetServiceStatus

GetEnvironmentVariableW

GetCommandLineW

ExpandEnvironmentStringsW

LocalAlloc

LocalFree

ReadFile

DeleteFileW

GetFileAttributesW

WriteFile

SetFileAttributesW

CreateDirectoryW

DefineDosDeviceW

GetVolumeInformationW

CreateFileW

GetDiskFreeSpaceW

FlushFileBuffers

FindVolumeClose

FindClose

DeleteVolumeMountPointW

FindNextFileW

FindFirstFileW

FindNextVolumeW

GetVolumePathNameW

QueryDosDeviceW

FindFirstVolumeW

GetDriveTypeW

GetOverlappedResult

DeviceIoControl

GetVolumePathNamesForVolumeNameW

GetVolumeNameForVolumeMountPointW

GetLengthSid

InitializeSecurityDescriptor

DuplicateToken

InitializeAcl

GetTokenInformation

AddAccessAllowedAce

PrivilegeCheck

AllocateAndInitializeSid

AdjustTokenPrivileges

CreateWellKnownSid

EqualSid

SetSecurityDescriptorOwner

CopySid

SetSecurityDescriptorGroup

GetAclInformation

GetAce

AddAce

AddAccessDeniedAceEx

AddAccessAllowedAceEx

IsValidSid

AccessCheck

GetSidSubAuthorityCount

EqualDomainSid

CheckTokenMembership

FreeSid

SetSecurityDescriptorDacl

SetVolumeMountPointW

EventRegister

EventUnregister

EventSetInformation

EventWriteTransfer

RpcStringFreeW

UuidToStringW

I_RpcBindingInqLocalClientPID

MoveFileExW

I_ScRegisterDeviceNotification

I_ScUnregisterDeviceNotification

GetComputerNameW

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlCaptureContext

QueryPerformanceCounter

CreateVssSnapshotSetDescription

VssFreeSnapshotPropertiesInternal

LoadVssSnapshotSetDescription

CreateWriter

CreateWriterEx

DevObjCreateDeviceInfoList

DevObjEnumDeviceInterfaces

DevObjGetDeviceInterfaceDetail

DevObjEnumDeviceInfo

DevObjDestroyDeviceInfoList

DevObjGetDeviceRegistryProperty

DevObjUninstallDevice

DevObjGetClassDevs

ord5

ord7

ord9

ord1

ord2

ord8

ord4

ord6

ord11

ord10

ord3

RegisterEventSourceW

DeregisterEventSource

ReportEventW

AuthzUnregisterSecurityEventSource

AuthzRegisterSecurityEventSource

AuthzReportSecurityEventFromParams

OpenProcess

QueryFullProcessImageNameW

GetTimeZoneInformation

ResolveDelayLoadedAPI

DelayLoadFailureHook

GetStorageDependencyInformation

BcdCloseObject

BcdGetElementData

BcdCloseStore

BcdOpenObject

BcdOpenSystemStore

BcdForciblyUnloadStore

EncodePointer

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE