IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

EventUnregister

EventRegister

EventActivityIdControl

RevertToSelf

CryptReleaseContext

CryptGetHashParam

CryptDestroyHash

CryptHashData

CryptCreateHash

CryptAcquireContextW

RegQueryValueExW

RegEnumValueW

RegDeleteValueW

RegSetValueExW

RegEnumKeyExW

RegQueryInfoKeyW

RegDeleteKeyExW

OpenThreadToken

CreateProcessAsUserW

RegOpenKeyExW

SetThreadToken

EventWriteTransfer

RegCloseKey

DuplicateToken

OpenProcessToken

GetTokenInformation

ConvertSidToStringSidW

RegCreateKeyExW

RegOpenCurrentUser

ImpersonateLoggedOnUser

CloseThreadpoolWork

CreateFileW

RemoveDirectoryW

DeviceIoControl

CreateThreadpoolCleanupGroup

SetThreadpoolThreadMaximum

CloseThreadpoolCleanupGroupMembers

CloseThreadpoolCleanupGroup

SetThreadpoolThreadMinimum

CreateThreadpool

CloseThreadpool

DuplicateHandle

GetExitCodeProcess

CreateProcessW

GetCurrentThread

WaitForSingleObject

FreeLibrary

GetModuleHandleExW

IsDebuggerPresent

InitializeSListHead

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

IsProcessorFeaturePresent

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetProcAddress

CreateEventW

WaitForSingleObjectEx

ResetEvent

SetEvent

InitializeCriticalSectionAndSpinCount

CloseHandle

CompareStringEx

LCMapStringEx

DecodePointer

EncodePointer

InitializeCriticalSectionEx

GetStringTypeW

LocalFree

WideCharToMultiByte

GetLastError

MultiByteToWideChar

GetEnvironmentVariableW

LeaveCriticalSection

SubmitThreadpoolWork

RaiseException

DeleteCriticalSection

InitializeCriticalSection

FormatMessageW

GetModuleFileNameW

GetNativeSystemInfo

FindFirstFileW

FindNextFileW

GetFinalPathNameByHandleW

FindClose

GetFileAttributesW

DeleteFileW

MoveFileExW

SetLastError

ExpandEnvironmentStringsW

GetSystemDirectoryW

LoadLibraryA

LoadLibraryW

Wow64DisableWow64FsRedirection

Wow64RevertWow64FsRedirection

SearchPathW

GetLongPathNameW

GetShortPathNameW

GetTempPathW

GetCurrentDirectoryW

GetComputerNameExW

MoveFileW

GetModuleFileNameA

OutputDebugStringW

GetDriveTypeW

CopyFileW

Sleep

HeapFree

CreateThreadpoolWork

HeapAlloc

GetVersionExW

EnterCriticalSection

GetTempFileNameW

SetFileAttributesW

HeapDestroy

HeapReAlloc

HeapSize

DebugBreak

LoadResource

FindResourceExW

HeapSetInformation

LockResource

SizeofResource

GetProcessHeap

GetModuleHandleW

CopyFileExW

LoadStringW

UnregisterClassA

wcsnlen

strcspn

memset

wcsncmp

_lock_locales

_unlock_locales

_c_exit

_register_thread_local_exe_atexit_callback

_initterm_e

_initterm

_o__lock_file

_o__malloc_base

_o__purecall

_o__register_onexit_function

_o__seh_filter_exe

_o__set_app_type

_o__set_fmode

_o__set_new_mode

_o__stricmp

_o__ultow_s

_o__unlock_file

_o__wcsdup

_o__wcsicmp

_o__wcslwr_s

_o__wcsnicmp

_o__wcsupr_s

_o__wmakepath_s

_o__wsplitpath_s

_o__wtoi

_o_abort

_o_calloc

_o_ceilf

_o_exit

_o_fclose

_o_fflush

_o_fgetc

_o_fgetpos

_o_fgetwc

_o_fputwc

_o_free

_o_frexp

_o_fsetpos

_o_fwrite

_o_isspace

_o_iswalpha

_o_iswctype

_o_iswdigit

_o_iswspace

_o_ldexp

_o_localeconv

_o_malloc

_o_pow

_o_powf

_o_rand

_o_realloc

_o_setlocale

_o_setvbuf

_o_srand

_o_strtod

_o_strtof

_o_terminate

_o_tolower

_o_towupper

_o_ungetc

_o_ungetwc

_o_wcscpy_s

__C_specific_handler

__uncaught_exception

__current_exception

__current_exception_context

_CxxThrowException

_o__invalid_parameter_noinfo_noreturn

_o__invalid_parameter_noinfo

_o__initialize_wide_environment

_o__initialize_onexit_table

_o__get_initial_wide_environment

_o__fseeki64

_o__free_base

_o__exit

_o__errno

_o__crt_atexit

_o__configure_wide_argv

_o__configthreadlocale

_o__cexit

_o__calloc_base

_o__callnewh

_o___stdio_common_vswscanf

_o___stdio_common_vswprintf_s

_o___stdio_common_vswprintf

_o___stdio_common_vsprintf_s

_o___stdio_common_vsnprintf_s

_o___std_exception_destroy

_o___std_exception_copy

_o___pctype_func

_o___p__commode

_o___p___wargv

_o___p___argc

_o___acrt_iob_func

_o____mb_cur_max_func

_o____lc_locale_name_func

_o____lc_collate_cp_func

_o____lc_codepage_func

strrchr

__CxxFrameHandler3

__RTDynamicCast

memchr

memcmp

memcpy

strchr

wcschr

__std_type_info_compare

memmove

ord3

ord3

ord96

ord118

ord8

ord217

ord159

ord160

ord173

ord49

ord32

RtlLookupFunctionEntry

RtlCaptureContext

NtQueryKey

RtlVirtualUnwind

CoInitializeEx

CLSIDFromString

CoTaskMemFree

StringFromGUID2

CoCreateInstance

CoCreateGuid

CoTaskMemAlloc

CoUninitialize

VariantCopy

VariantChangeType

SysFreeString

VariantClear

SysAllocString

VariantInit

RpcBindingFree

RpcMgmtIsServerListening

RpcBindingSetAuthInfoExW

RpcStringBindingComposeW

RpcBindingFromStringBindingW

RpcMgmtSetCancelTimeout

RpcCancelThread

RpcStringFreeW

UuidCreate

NdrClientCall2

SHGetKnownFolderPath

ord165

PathFileExistsW

PathIsUNCW

PathCanonicalizeW

PathFindExtensionW

SHCreateStreamOnFileEx

CreateEnvironmentBlock

UnloadUserProfile

ExpandEnvironmentStringsForUserW

DestroyEnvironmentBlock

_time64

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE