IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

free

malloc

_XcptFilter

_vsnwprintf

bsearch

_wcsicmp

wcscpy_s

wcscat_s

_initterm

_amsg_exit

_except_handler4_common

wcschr

swprintf_s

memset

memcpy

wcsrchr

EtwTraceMessage

EtwGetTraceEnableFlags

EtwGetTraceEnableLevel

EtwGetTraceLoggerHandle

EtwRegisterTraceGuidsW

EtwUnregisterTraceGuids

EtwEventWrite

NtQuerySecurityObject

NtSetSecurityObject

RtlCreateServiceSid

RtlDosPathNameToRelativeNtPathName_U_WithStatus

RtlReleaseRelativeName

RtlFreeUnicodeString

RtlInitUnicodeStringEx

RtlPrefixUnicodeString

RtlQueryEnvironmentVariable

RtlInitUnicodeString

LdrOpenImageFileOptionsKey

LdrQueryImageFileKeyOption

RtlExpandEnvironmentStrings

RtlDestroyEnvironment

RtlCreateEnvironmentEx

RtlSetEnvironmentVar

NtOpenProcess

NtOpenThreadToken

NtQueryInformationToken

NtDuplicateObject

RtlRegisterWait

NtQuerySystemInformation

NtQueryInformationProcess

NtReadVirtualMemory

RtlNtStatusToDosErrorNoTeb

RtlImageNtHeaderEx

RtlDeregisterWaitEx

RtlDeregisterWait

RtlAcquireSRWLockExclusive

RtlReleaseSRWLockExclusive

RtlAcquireSRWLockShared

RtlReleaseSRWLockShared

NtOpenProcessToken

NtDuplicateToken

NtSetInformationToken

RtlRemovePrivileges

RtlNtStatusToDosError

NtClose

RtlInitializeSRWLock

EtwEventRegister

EtwEventUnregister

RegGetValueW

RegOpenKeyExW

RegQueryValueExW

RegCloseKey

TerminateProcess

GetExitCodeProcess

GetCurrentProcessId

DeleteProcThreadAttributeList

GetCurrentProcess

GetCurrentThreadId

InitializeProcThreadAttributeList

UpdateProcThreadAttribute

CreateProcessAsUserW

ResumeThread

ImpersonateLoggedOnUser

GetTokenInformation

CheckTokenMembership

SetTokenInformation

GetSidSubAuthority

InitializeSid

GetSidLengthRequired

RevertToSelf

RegisterServiceCtrlHandlerExW

SetServiceStatus

RpcRevertToSelf

RpcImpersonateClient

I_RpcBindingInqLocalClientPID

RpcServerUseProtseqW

RpcAsyncCompleteCall

RpcServerInqBindings

RpcServerRegisterIfEx

RpcEpRegisterW

RpcServerUnregisterIf

RpcEpUnregister

RpcBindingVectorFree

NdrAsyncServerCall

NdrServerCall2

GetLastError

InterlockedIncrement

LocalFree

WaitForSingleObject

InterlockedDecrement

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetSystemTimeAsFileTime

QueryPerformanceCounter

Sleep

InterlockedExchange

LoadLibraryExA

InterlockedCompareExchange

FreeLibrary

GetProcAddress

DelayLoadFailureHook

lstrlenW

GetTempPathW

GetSystemDirectoryW

GetEnvironmentVariableW

CreateFileMappingW

MapViewOfFile

CreateActCtxW

QueryActCtxSettingsW

ReleaseActCtx

UnmapViewOfFile

GetLongPathNameW

CheckElevationEnabled

CreateFileW

CheckElevation

GetFullPathNameW

GetFileAttributesW

ReadProcessMemory

ReleaseMutex

CreateMutexW

LocalAlloc

CreateEventW

CloseHandle

GetTickCount

UnregisterWait

SetEvent

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ