IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

SendSAS

WTSQuerySessionInformationW

WTSEnumerateSessionsA

WTSFreeMemory

LsaFreeReturnBuffer

LsaEnumerateLogonSessions

LsaGetLogonSessionData

GetStdHandle

GetFileType

GetFileInformationByHandleEx

WakeAllConditionVariable

SleepConditionVariableSRW

UnmapViewOfFile

LocalFree

GetExitCodeProcess

ConnectNamedPipe

LocalAlloc

CreateFileW

FlushFileBuffers

OpenProcess

WTSGetActiveConsoleSessionId

VirtualAllocEx

WriteProcessMemory

GetModuleHandleA

QueueUserAPC

ResumeThread

GetModuleHandleExA

GetCurrentThreadId

TerminateProcess

SetThreadExecutionState

GetLogicalProcessorInformation

SetFilePointerEx

GlobalSize

WaitForSingleObject

SetHandleInformation

GetUserDefaultLocaleName

SetConsoleMode

GetModuleHandleW

CreateSemaphoreA

SetConsoleCtrlHandler

GetQueuedCompletionStatusEx

SetLastError

GetFinalPathNameByHandleW

TryAcquireSRWLockExclusive

PostQueuedCompletionStatus

ReadFile

GetOverlappedResult

WriteFile

CancelIoEx

CreateIoCompletionPort

SetFileCompletionNotificationModes

CreateNamedPipeW

WakeConditionVariable

LoadLibraryW

FreeLibrary

LoadLibraryExA

CreateFileMappingW

MapViewOfFile

OpenFileMappingW

WriteConsoleW

GetCurrentDirectoryW

GetEnvironmentVariableW

SetEnvironmentVariableW

GetTempPathW

GetModuleFileNameW

GetCommandLineW

GetFileInformationByHandle

GetFullPathNameW

FindNextFileW

CreateDirectoryW

FindFirstFileW

GetEnvironmentStringsW

FreeEnvironmentStringsW

CompareStringOrdinal

GetSystemDirectoryW

GetWindowsDirectoryW

CreateProcessW

GetFileAttributesW

DuplicateHandle

CreateThread

ReadFileEx

SleepEx

WriteFileEx

WaitForMultipleObjects

CreateEventW

CancelIo

ExitProcess

GetSystemTimeAsFileTime

DeleteFileW

MoveFileExW

RemoveDirectoryW

DeviceIoControl

CreateSymbolicLinkW

GetSystemInfo

GetTickCount64

GlobalMemoryStatusEx

GetDiskFreeSpaceExW

GetDriveTypeW

GetVolumeInformationW

GetProcessTimes

ReadProcessMemory

VirtualQueryEx

GetSystemTimes

GetProcessIoCounters

SetErrorMode

SetThreadErrorMode

GetComputerNameExW

VirtualQuery

ProcessIdToSessionId

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

RtlVirtualUnwind

GetFileSize

GetFileTime

SetFilePointer

ResetEvent

InitializeCriticalSectionEx

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

InitializeConditionVariable

SleepConditionVariableCS

SetThreadPriority

CreateSemaphoreW

TryEnterCriticalSection

InitOnceBeginInitialize

InitOnceComplete

GetNativeSystemInfo

InitializeCriticalSection

SetFileTime

GetLogicalDrives

GetCurrentProcessId

RtlLookupFunctionEntry

RtlCaptureContext

GetCurrentThread

FindClose

QueryPerformanceFrequency

FormatMessageW

lstrlenW

ReleaseSemaphore

WaitForMultipleObjectsEx

QueryPerformanceCounter

SetEvent

SwitchToThread

CreateEventA

GlobalUnlock

ReleaseSRWLockShared

AcquireSRWLockShared

ReleaseSRWLockExclusive

GetTimeZoneInformation

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

ReleaseMutex

GetCurrentProcess

GetProcAddress

CloseHandle

CreateMutexA

LoadLibraryA

WaitForSingleObjectEx

AcquireSRWLockExclusive

Sleep

GetConsoleOutputCP

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

GetLocaleInfoW

LCMapStringW

CompareStringW

FlsFree

FlsSetValue

FlsGetValue

FlsAlloc

GetCommandLineA

GetModuleHandleExW

FreeLibraryAndExitThread

ExitThread

LoadLibraryExW

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

InitializeCriticalSectionAndSpinCount

RtlUnwind

RaiseException

GlobalFree

RtlPcToFileHeader

RtlUnwindEx

GetCPInfo

GetStringTypeW

LCMapStringEx

DecodePointer

EncodePointer

WideCharToMultiByte

GetStartupInfoW

IsDebuggerPresent

InitializeSListHead

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GlobalLock

GlobalAlloc

MultiByteToWideChar

HeapReAlloc

GetProcessHeap

HeapAlloc

GetLastError

SetThreadStackGuarantee

AddVectoredExceptionHandler

HeapFree

GetFileSizeEx

ReadConsoleW

OutputDebugStringW

FindFirstFileExW

IsValidCodePage

GetACP

GetConsoleMode

GetOEMCP

SetStdHandle

HeapSize

CopyFileExW

SetEndOfFile

LookupPrivilegeValueW

StartServiceCtrlDispatcherW

RegisterServiceCtrlHandlerExW

SetServiceStatus

InitializeSecurityDescriptor

SetEntriesInAclW

AllocateAndInitializeSid

FreeSid

SetSecurityDescriptorDacl

RegOpenKeyExW

RegQueryValueExW

RegCloseKey

GetUserNameW

RegDeleteTreeW

OpenProcessToken

GetTokenInformation

RegDeleteKeyExW

CreateProcessAsUserW

CreateProcessWithLogonW

RegCreateKeyExW

RegSetValueExW

SystemFunction036

CreateProcessWithTokenW

ImpersonateLoggedOnUser

DuplicateTokenEx

EqualSid

AdjustTokenPrivileges

IsValidSid

LookupAccountSidW

CopySid

GetLengthSid

PropVariantClear

ReleaseStgMedium

OleIsCurrentClipboard

OleGetClipboard

OleSetClipboard

OleUninitialize

CoTaskMemAlloc

CoSetProxyBlanket

CoInitializeSecurity

OleInitialize

CoCreateInstance

CoTaskMemFree

CoUninitialize

CoInitializeEx

SetForegroundWindow

TrackPopupMenu

OpenInputDesktop

SetThreadDesktop

CloseDesktop

GetThreadDesktop

GetUserObjectInformationA

PeekMessageA

SendMessageA

DefWindowProcW

GetAsyncKeyState

GetClipboardOwner

SetClipboardViewer

ChangeClipboardChain

RegisterClipboardFormatA

CountClipboardFormats

EnumClipboardFormats

GetClipboardFormatNameA

GetKeyboardState

RegisterClassExW

RegisterWindowMessageA

PostMessageA

ExitWindowsEx

EmptyClipboard

SetClipboardData

CloseClipboard

OpenClipboard

RegisterClipboardFormatW

SendInput

GetForegroundWindow

GetWindowThreadProcessId

GetWindowLongW

AdjustWindowRectEx

DestroyIcon

PostMessageW

GetUpdateRect

PostThreadMessageW

GetKeyboardLayout

AttachThreadInput

VkKeyScanExW

GetKeyState

MapVirtualKeyW

PeekMessageW

ValidateRect

GetRawInputData

RedrawWindow

BlockInput

DestroyWindow

RegisterClassW

SetMenuItemInfoW

DrawIconEx

AppendMenuW

CreateAcceleratorTableW

DestroyAcceleratorTable

VkKeyScanW

CreatePopupMenu

CreateMenu

RegisterRawInputDevices

SetWindowLongPtrW

CreateWindowExW

CreateIcon

DispatchMessageW

GetMessageW

SetWindowTextW

GetClipboardData

IsClipboardFormatAvailable

ReleaseDC

GetDC

GetIconInfo

FindWindowExA

GetCursorPos

GetSystemMetrics

LockWorkStation

EnumDisplayDevicesW

EnumDisplaySettingsExW

GetCursorInfo

EnumDisplaySettingsW

CreateWindowExA

RegisterClassExA

LoadCursorA

CallNextHookEx

UnhookWindowsHookEx

PostQuitMessage

SendMessageW

CheckMenuItem

MsgWaitForMultipleObjectsEx

InvalidateRgn

SetWindowPos

MapVirtualKeyExW

GetMenu

MessageBoxW

ChangeDisplaySettingsExW

PostThreadMessageA

ShowWindow

FindWindowA

DefWindowProcA

SetWindowsHookExA

GetMessageA

TranslateMessage

DispatchMessageA

ToUnicodeEx

NtCancelIoFileEx

NtCreateFile

NtDeviceIoControlFile

RtlNtStatusToDosError

NtWriteFile

RtlGetVersion

NtQueryInformationProcess

NtQuerySystemInformation

NtReadFile

BCryptGenRandom

CertNameToStrA

CertCloseStore

CryptHashCertificate

CertOpenSystemStoreA

CertEnumCertificatesInStore

D3D11CreateDevice

CreateDXGIFactory1

DeleteObject

GetObjectA

GetBitmapBits

CreateCompatibleDC

SelectObject

CreateDIBSection

CreateDCW

DeleteDC

BitBlt

GetDIBits

CreateCompatibleBitmap

GetIfEntry2

GetIfTable2

FreeMibTable

GetAdaptersAddresses

SendARP

NetUserGetLocalGroups

NetApiBufferFree

NetUserGetInfo

NetUserEnum

GetErrorInfo

SysAllocString

VariantClear

SysFreeString

SysStringLen

PdhCollectQueryData

PdhOpenQueryA

PdhAddEnglishCounterW

PdhGetFormattedCounterValue

PdhCloseQuery

PdhRemoveCounter

CallNtPowerInformation

GetModuleFileNameExW

GetPerformanceInfo

SHAddToRecentDocs

Shell_NotifyIconGetRect

Shell_NotifyIconW

CommandLineToArgvW

ShellExecuteW

SHGetKnownFolderPath

ShellExecuteExW

socket

WSAIoctl

getaddrinfo

freeaddrinfo

WSAStartup

sendto

getsockname

recvfrom

getpeername

recv

send

WSASend

WSACleanup

accept

WSASocketW

ioctlsocket

setsockopt

bind

closesocket

connect

listen

getsockopt

shutdown

WSAGetLastError

DefSubclassProc

RemoveWindowSubclass

SetWindowSubclass

DestroyEnvironmentBlock

CreateEnvironmentBlock

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ