IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

ToUnicodeEx

RegisterClipboardFormatW

GetKeyboardLayout

EmptyClipboard

IsClipboardFormatAvailable

SetClipboardData

GetForegroundWindow

CloseClipboard

GetWindowThreadProcessId

GetClipboardData

OpenClipboard

SetConsoleTextAttribute

ReleaseSemaphore

GetTimeZoneInformation

FormatMessageW

WideCharToMultiByte

TryAcquireSRWLockExclusive

GetFileInformationByHandle

SetFileTime

IsValidCodePage

SetConsoleMode

FindClose

WakeConditionVariable

SwitchToThread

GetConsoleMode

GetStdHandle

GetCPInfo

GetCurrentThread

SetEnvironmentVariableW

SetStdHandle

MultiByteToWideChar

GlobalFree

GetStringTypeW

LocalAlloc

GlobalAlloc

LocalFree

GetTimeZoneInformationForYear

AcquireSRWLockExclusive

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

SetNamedPipeHandleState

ReleaseSRWLockExclusive

ReleaseMutex

lstrlenW

ReadFile

WriteFile

DisconnectNamedPipe

FlushFileBuffers

CreateNamedPipeW

GetCurrentProcess

GetProcAddress

ConnectNamedPipe

GetBinaryTypeW

GetACP

GetOEMCP

AcquireSRWLockShared

CreateSemaphoreW

CancelIo

ReadDirectoryChangesW

WaitForSingleObject

CreateSemaphoreA

SetConsoleCtrlHandler

FreeEnvironmentStringsW

ExpandEnvironmentStringsW

GetCompressedFileSizeW

CloseHandle

CreateMutexA

WakeAllConditionVariable

GetCurrentProcessId

LoadLibraryA

FindFirstFileW

GetTickCount64

GetCurrentThreadId

SleepConditionVariableSRW

GetProcessId

WaitForSingleObjectEx

GlobalUnlock

K32EnumProcesses

CreateToolhelp32Snapshot

Process32First

Process32Next

GetPriorityClass

ReadProcessMemory

OpenProcess

GetProcessTimes

VirtualQueryEx

GetProcessIoCounters

GlobalSize

GetFullPathNameW

CreatePipe

Sleep

GetModuleHandleA

GetNativeSystemInfo

VerSetConditionMask

VerifyVersionInfoW

GetSystemDirectoryW

GetComputerNameExW

LCMapStringW

CreateConsoleScreenBuffer

LoadLibraryW

FreeLibrary

GetSystemInfo

UnlockFile

LockFileEx

ReleaseSRWLockShared

GetFileInformationByHandleEx

ReadConsoleInputW

FlsGetValue

GetCommandLineA

GetModuleHandleExW

GetNumberOfConsoleInputEvents

SetConsoleCursorInfo

GetConsoleCursorInfo

FreeLibraryAndExitThread

ExitThread

LoadLibraryExW

CompareStringOrdinal

AddVectoredExceptionHandler

SetThreadStackGuarantee

CreateWaitableTimerExW

SetWaitableTimer

SetLastError

GetCurrentDirectoryW

GetEnvironmentStringsW

GetEnvironmentVariableW

GetCommandLineW

SetFileInformationByHandle

DuplicateHandle

SetFilePointerEx

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

InitializeCriticalSectionAndSpinCount

EncodePointer

RtlPcToFileHeader

RtlUnwindEx

SetHandleInformation

WriteFileEx

SleepEx

GetOverlappedResult

GetExitCodeProcess

QueryPerformanceCounter

QueryPerformanceFrequency

GetStartupInfoW

FindNextFileW

IsDebuggerPresent

InitializeSListHead

CreateDirectoryW

DeleteFileW

MoveFileExW

RemoveDirectoryW

CreateSymbolicLinkW

CreateHardLinkW

SetFileAttributesW

GetFinalPathNameByHandleW

CopyFileExW

GetFileType

IsProcessorFeaturePresent

TerminateProcess

SetUnhandledExceptionFilter

GetModuleHandleW

GetModuleFileNameW

SetCurrentDirectoryW

ExitProcess

ReadFileEx

CreateEventW

GetWindowsDirectoryW

CreateProcessW

DeleteProcThreadAttributeList

GetFileAttributesW

InitializeProcThreadAttributeList

UpdateProcThreadAttribute

WriteConsoleW

ReadConsoleW

CreateThread

GetSystemTimeAsFileTime

GetTempPathW

UnhandledExceptionFilter

SetConsoleActiveScreenBuffer

CreateFileW

FillConsoleOutputAttribute

GetUserPreferredUILanguages

GetProcessHeap

HeapFree

GetSystemTimes

HeapAlloc

WaitForMultipleObjects

GlobalLock

GetConsoleOutputCP

FillConsoleOutputCharacterA

DeleteCriticalSection

CreateEventA

TryEnterCriticalSection

LeaveCriticalSection

RegisterWaitForSingleObject

EnterCriticalSection

InitializeCriticalSection

RaiseException

AreFileApisANSI

HeapCreate

GlobalMemoryStatusEx

K32GetPerformanceInfo

GetDiskFreeSpaceW

FindFirstFileExW

GetFileSizeEx

FindFirstVolumeW

FindNextVolumeW

FindVolumeClose

GetDriveTypeW

GetVolumeInformationW

GetVolumePathNamesForVolumeNameW

GetDiskFreeSpaceExW

OutputDebugStringA

LockFile

SetFilePointer

SetEndOfFile

UnlockFileEx

CreateMutexW

UnmapViewOfFile

HeapValidate

HeapSize

GetTempPathA

GetDiskFreeSpaceA

GetFileAttributesA

GetFileAttributesExW

OutputDebugStringW

FlushViewOfFile

CreateFileA

DeleteFileA

HeapReAlloc

HeapCompact

SetConsoleCursorPosition

GetConsoleScreenBufferInfo

GetLastError

HeapDestroy

GetFileSize

LoadLibraryExA

CompareStringW

GetEnvironmentVariableA

GetFullPathNameA

FlsAlloc

FlsSetValue

FlsFree

GetCurrentProcessorNumber

VirtualAlloc

VirtualFree

VirtualQuery

GetLargePageMinimum

GetNumaHighestNodeNumber

DeviceIoControl

GetNumaNodeProcessorMask

WriteConsoleA

GetTickCount

MapViewOfFile

CreateFileMappingW

FormatMessageA

GetSystemTime

SystemTimeToFileTime

LookupPrivilegeValueA

GetUserNameW

GetLengthSid

RegCloseKey

RegEnumValueW

LookupAccountSidW

AdjustTokenPrivileges

LookupPrivilegeValueW

RegOpenKeyExW

RegQueryValueExW

GetTokenInformation

OpenProcessToken

InitializeSecurityDescriptor

SetSecurityDescriptorGroup

FreeSid

SetSecurityDescriptorControl

GetSecurityDescriptorControl

SetSecurityDescriptorOwner

AddAce

GetAce

InitializeAcl

GetAclInformation

CopySid

GetSidLengthRequired

GetSidSubAuthorityCount

IsValidSid

SetSecurityDescriptorSacl

SetSecurityDescriptorDacl

GetSecurityDescriptorGroup

ImpersonateAnonymousToken

GetSecurityDescriptorOwner

RevertToSelf

GetSecurityDescriptorSacl

GetSecurityDescriptorDacl

SystemFunction036

SHGetKnownFolderPath

SHCreateItemFromParsingName

CommandLineToArgvW

CoSetProxyBlanket

CoTaskMemFree

CoUninitialize

CoInitializeSecurity

CoCreateInstance

CoInitializeEx

BCryptGenRandom

CertGetCertificateChain

CertOpenStore

CertVerifyCertificateChainPolicy

CertAddCertificateContextToStore

CertDuplicateCertificateChain

CertFreeCertificateChain

CertDuplicateStore

CertCloseStore

CertFreeCertificateContext

CertDuplicateCertificateContext

CertEnumCertificatesInStore

WSARecv

WSASend

ioctlsocket

WSAGetLastError

freeaddrinfo

WSAStartup

send

WSADuplicateSocketW

closesocket

WSASocketW

getaddrinfo

connect

select

getsockopt

getpeername

recv

getsockname

listen

WSACleanup

setsockopt

bind

NtWriteFile

NtReadFile

NtQueryInformationProcess

RtlGetVersion

RtlNtStatusToDosError

NtCreateFile

NtQuerySystemInformation

GetFileVersionInfoSizeW

GetFileVersionInfoW

VerQueryValueW

QueryContextAttributesW

InitializeSecurityContextW

DeleteSecurityContext

FreeContextBuffer

DecryptMessage

EncryptMessage

AcceptSecurityContext

LsaEnumerateLogonSessions

LsaGetLogonSessionData

LsaFreeReturnBuffer

FreeCredentialsHandle

AcquireCredentialsHandleA

GetIfTable2

GetAdaptersAddresses

FreeMibTable

PdhCollectQueryDataEx

PdhAddEnglishCounterA

PdhCloseQuery

PdhRemoveCounter

PdhGetFormattedCounterValue

PdhOpenQueryA

PdhAddEnglishCounterW

PdhCollectQueryData

CallNtPowerInformation

VariantClear

GetErrorInfo

SysFreeString

SysStringLen

SysAllocString

NetUserGetInfo

NetUserEnum

NetUserGetLocalGroups

NetApiBufferFree

GetModuleFileNameExW

GetModuleBaseNameW

GetProcessMemoryInfo

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ