IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

GlobalLock

GlobalSize

GlobalUnlock

GetFileAttributesExW

GetTickCount

DeviceIoControl

GetCurrentProcessId

GetLongPathNameW

GetWindowsDirectoryW

GetCurrentDirectoryW

MoveFileExW

SearchPathW

CreateThread

WaitForSingleObject

GetCurrentThreadId

GetVersion

GetSystemDefaultUILanguage

GetFileSize

GetLocalTime

VirtualProtect

GetModuleHandleExW

IsBadStringPtrW

ProcessIdToSessionId

OpenProcess

CreateProcessW

WTSGetActiveConsoleSessionId

MapViewOfFile

UnmapViewOfFile

GetProcessId

LocalAlloc

LocalFree

CreateFileMappingW

GetFileSizeEx

GlobalFree

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

ResumeThread

GetSystemTimeAsFileTime

ReleaseMutex

GetSystemTime

SystemTimeToFileTime

SetFileAttributesW

DeleteFileW

OpenFileMappingW

OpenThread

GetCommandLineW

OutputDebugStringW

RtlPcToFileHeader

FormatMessageW

CreateFileA

LocalFileTimeToFileTime

SetFilePointerEx

HeapLock

HeapUnlock

HeapWalk

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

GetFileTime

GlobalAlloc

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

QueryPerformanceCounter

InitializeSListHead

InterlockedFlushSList

ExitProcess

OpenMutexW

CreateMutexW

WideCharToMultiByte

FindResourceExW

InitializeCriticalSectionAndSpinCount

GetModuleFileNameW

RaiseException

InitializeCriticalSection

lstrcmpiW

DeleteCriticalSection

SetLastError

CloseHandle

GetLastError

LoadLibraryW

GetSystemDirectoryW

SetFilePointer

GetVersionExW

GetSystemWindowsDirectoryW

FindResourceW

SizeofResource

LoadResource

LockResource

FreeResource

GetFileInformationByHandle

CreateFileW

Sleep

ReadFile

LeaveCriticalSection

EnterCriticalSection

MultiByteToWideChar

LoadLibraryExW

ExpandEnvironmentStringsW

FreeLibrary

GetCurrentProcess

GetProcAddress

GetModuleHandleW

GetFileAttributesW

GetProcessHeap

HeapAlloc

HeapFree

HeapReAlloc

HeapSize

HeapDestroy

WriteFile

GetExitCodeProcess

IsDebuggerPresent

IsZoomed

GetWindowTextW

SendMessageTimeoutW

SystemParametersInfoW

EnumDisplayDevicesW

GetLastInputInfo

GetClassNameW

GetShellWindow

GetWindowInfo

EnumWindows

WindowFromPoint

GetWindowRect

GetDesktopWindow

GetSystemMetrics

GetWindow

IsWindowVisible

CharNextW

FindWindowW

IsWindow

GetForegroundWindow

MonitorFromWindow

wsprintfW

GetWindowThreadProcessId

SetForegroundWindow

LoadStringW

GetAncestor

RegDeleteKeyW

ConvertStringSecurityDescriptorToSecurityDescriptorW

LookupAccountSidW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

CreateProcessAsUserW

CloseServiceHandle

QueryServiceStatus

StartServiceW

ChangeServiceConfigW

OpenServiceW

OpenSCManagerW

GetSidSubAuthority

GetSidSubAuthorityCount

GetTokenInformation

FreeSid

GetLengthSid

SetTokenInformation

AllocateAndInitializeSid

CreateRestrictedToken

DuplicateTokenEx

OpenProcessToken

AdjustTokenPrivileges

LookupPrivilegeValueW

CryptReleaseContext

CryptGenRandom

CryptAcquireContextW

RegEnumValueW

RegCreateKeyW

RegQueryInfoKeyW

RegSetValueExW

RegDeleteValueW

RegEnumKeyExW

RegCreateKeyExW

RegCloseKey

RegQueryValueExW

RegEnumKeyW

RegOpenKeyExW

RegQueryValueExA

SHGetPathFromIDListW

SHGetSpecialFolderLocation

ord155

ord190

ord25

ord152

ShellExecuteExW

ShellExecuteW

ord165

SHGetSpecialFolderPathW

SHGetFileInfoW

SHGetDesktopFolder

SHGetMalloc

ord18

GetHGlobalFromStream

IIDFromString

StringFromGUID2

CoInitialize

CreateStreamOnHGlobal

CoCreateInstance

CoTaskMemRealloc

CoTaskMemAlloc

CoTaskMemFree

CoUninitialize

SysAllocStringByteLen

SafeArrayPutElement

VariantChangeType

VariantInit

SafeArrayCreate

SafeArrayGetElement

VariantClear

SysStringByteLen

SysFreeString

SysAllocString

VarUI4FromStr

PathRemoveFileSpecW

PathAppendW

SHSetValueW

SHGetValueW

PathAddBackslashW

PathFileExistsW

StrCmpNIW

PathFindFileNameW

PathIsRelativeW

StrCpyNW

PathIsDirectoryW

StrPBrkA

StrPBrkW

StrStrIA

StrStrIW

PathFindExtensionW

SHEnumValueW

ord176

StrCmpIW

PathCombineW

StrRetToBufW

WSACleanup

WSCDeinstallProvider

WSCDeinstallProvider32

WSCUnInstallNameSpace

WSAGetLastError

WSAStartup

ntohl

htons

htonl

ntohs

VerQueryValueW

GetIpAddrTable

WTSFreeMemory

WTSQueryUserToken

WTSQuerySessionInformationW

CreateEnvironmentBlock

DestroyEnvironmentBlock

GetModuleFileNameExW

wcstol

realloc

wcsspn

wcscspn

_mbsstr

_mbsrchr

_mktime64

towupper

memmove

memset

_CxxThrowException

??0exception@@QEAA@AEBQEBD@Z

??0exception@@QEAA@AEBV0@@Z

??1exception@@UEAA@XZ

?what@exception@@UEBAPEBDXZ

memcpy

memcmp

wcscmp

_amsg_exit

__getmainargs

_initterm

__CxxFrameHandler

__DestructExceptionObject

_localtime64

___lc_codepage_func

rand

atoi

wcspbrk

__pctype_func

tolower

___mb_cur_max_func

strtol

localeconv

___lc_handle_func

abort

memchr

_wcstoui64

_msize

_XcptFilter

mbtowc

strrchr

iswctype

srand

ceil

log10

_clearfp

?terminate@@YAXXZ

_wtoi

malloc

free

wcsstr

wcschr

wcsncmp

__C_specific_handler

??_V@YAXPEAX@Z

??3@YAXPEAX@Z

_wtoi64

_wcsupr

_wcslwr

_strlwr

strchr

_time64

_wcsnicmp

??2@YAPEAX_K@Z

_wcsicmp

wcsrchr

calloc

iswspace

_errno

??_U@YAPEAX_K@Z

sqrt

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ