IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

GetEnvironmentVariableW

GetComputerNameExW

UnmapViewOfFile

WriteFile

MultiByteToWideChar

TerminateProcess

GetLastError

LoadLibraryW

MapViewOfFileEx

OpenEventW

GetACP

ExpandEnvironmentStringsW

OpenFileMappingW

QueryPerformanceCounter

InterlockedExchangeAdd

DebugBreak

UnhandledExceptionFilter

GetModuleFileNameW

lstrcpyW

Sleep

lstrcmpW

DeleteCriticalSection

GetModuleHandleW

LocalFree

FormatMessageW

RegisterWaitForSingleObjectEx

GetSystemTimeAsFileTime

GetCurrentThread

InterlockedCompareExchange

GetCurrentProcessId

lstrlenA

OutputDebugStringA

FreeLibrary

SetEvent

UnregisterWait

LeaveCriticalSection

GetModuleFileNameA

InterlockedExchange

LoadLibraryA

InterlockedDecrement

GetLocalTime

SetUnhandledExceptionFilter

GetProfileStringA

EnterCriticalSection

InitializeCriticalSection

CreateFileW

CreateFileMappingW

CloseHandle

GetSystemInfo

InterlockedIncrement

DisableThreadLibraryCalls

FileTimeToSystemTime

GetTickCount

LocalAlloc

GetComputerNameW

lstrlenW

GetCurrentProcess

RaiseException

GetProcAddress

GetCurrentThreadId

CreateFileA

lstrcmpiA

WideCharToMultiByte

CreateEventW

VirtualAlloc

CharLowerBuffW

wsprintfW

swprintf

strrchr

sscanf

wcscmp

sprintf

_stricmp

wcscat

_except_handler3

_adjust_fdiv

strchr

_strcmpi

wcstoul

free

_strnicmp

qsort

wcscpy

wcsspn

_wcsnicmp

wcslen

wcsrchr

_wcsicmp

malloc

_initterm

_vsnprintf

_ultoa

ASN1CEREncGeneralizedTime

ASN1_CreateModule

ASN1BEREncBool

ASN1Free

ASN1_CreateDecoder

ASN1BERDecBool

ASN1_CloseDecoder

ASN1BERDecSXVal

ASN1bitstring_free

ASN1objectidentifier_free

ASN1BERDecZeroCharString

ASN1BEREncU32

ASN1charstring_free

ASN1BERDecNotEndOfContents

ASN1BEREncSX

ASN1_FreeDecoded

ASN1EncSetError

ASN1BERDecEndOfContents

ASN1BERDecGeneralizedTime

ASN1octetstring_free

ASN1DecSetError

ASN1_CreateEncoder

ASN1BEREncOpenType

ASN1intx2int32

ASN1BERDecObjectIdentifier

ASN1BEREncExplicitTag

ASN1DecAlloc

ASN1BEREncBitString

ASN1BEREncS32

ASN1BERDecExplicitTag

ASN1BERDecBitString

ASN1BEREncOctetString

ASN1_Encode

ASN1ztcharstring_free

ASN1BERDecOpenType2

ASN1BERDecOctetString

ASN1intx_free

ASN1BERDecCharString

ASN1BERDecPeekTag

ASN1BERDecS32Val

ASN1BEREncCharString

ASN1_FreeEncoded

ASN1BEREncObjectIdentifier

ASN1BERDecSkip

ASN1BERDecU32Val

ASN1intx_setuint32

ASN1_Decode

ASN1BEREncEndOfContents

ASN1intx2uint32

ASN1_CloseEncoder

ASN1intxisuint32

LsaFreeReturnBuffer

FreeContextBuffer

CredMarshalTargetInfo

CredUnmarshalTargetInfo

LsaGetLogonSessionData

NtWaitForSingleObject

RtlInitializeSid

RtlTimeFieldsToTime

RtlSetDaclSecurityDescriptor

RtlEqualUnicodeString

RtlDowncaseUnicodeString

RtlDeregisterWait

RtlInitAnsiString

RtlGetElementGenericTable

RtlEraseUnicodeString

RtlDeleteCriticalSection

RtlCreateSecurityDescriptor

NtOpenThreadToken

RtlAcquireResourceExclusive

RtlCopyUnicodeString

RtlCopySid

RtlConvertSharedToExclusive

DbgPrint

RtlInitializeCriticalSection

RtlEnterCriticalSection

NtQueryInformationToken

RtlLengthRequiredSid

RtlCreateTimer

RtlCompareMemory

RtlTimeToTimeFields

RtlInsertElementGenericTable

RtlCreateAcl

NtAllocateLocallyUniqueId

RtlLeaveCriticalSection

RtlDeleteElementGenericTable

RtlOemStringToUnicodeString

NtDuplicateObject

RtlUpcaseUnicodeString

RtlCreateTimerQueue

RtlEqualDomainName

RtlPrefixUnicodeString

RtlConvertSidToUnicodeString

RtlIntegerToUnicodeString

RtlRunDecodeUnicodeString

RtlCompareUnicodeString

NtAllocateVirtualMemory

RtlAnsiStringToUnicodeString

NtClose

RtlAcquireResourceShared

RtlVerifyVersionInfo

RtlEqualSid

RtlCopyLuid

NtQuerySystemTime

RtlUnicodeStringToAnsiString

RtlAppendUnicodeStringToString

RtlInitializeResource

RtlFreeSid

RtlFreeAnsiString

RtlUniform

RtlAllocateAndInitializeSid

RtlLookupElementGenericTable

NtCreateEvent

NtOpenEvent

RtlInsertElementGenericTableAvl

RtlInitializeGenericTableAvl

RtlRegisterWait

RtlSystemTimeToLocalTime

RtlSubAuthorityCountSid

RtlInitUnicodeString

RtlDeleteResource

NtOpenProcessToken

RtlInitializeGenericTable

RtlSubAuthoritySid

NtQuerySystemInformation

RtlLengthSid

NtSetSecurityObject

RtlLookupElementGenericTableAvl

RtlAddAccessAllowedAce

RtlValidSid

RtlFreeUnicodeString

RtlReleaseResource

RtlNtStatusToDosError

RtlDeleteTimerQueue

MD5Update

CDFindCommonCSystemWithKey

MD5Final

CDGenerateRandomBits

CDLocateCSystem

MD5Init

CDLocateCheckSum

CDBuildIntegrityVect

SystemFunction006

QueryServiceStatus

GetTraceLoggerHandle

CredUnmarshalCredentialW

RegCreateKeyExW

CryptReleaseContext

RegCloseKey

AllocateAndInitializeSid

OpenServiceW

FreeSid

RegEnumKeyExW

RevertToSelf

CryptSetProvParam

ReportEventW

RegOpenKeyExW

CryptGetProvParam

RegQueryValueExW

SetThreadToken

TraceEvent

CloseServiceHandle

QueryServiceConfigW

CryptCreateHash

OpenSCManagerW

CredFree

CryptHashData

DeregisterEventSource

SystemFunction007

RegConnectRegistryW

RegisterTraceGuidsW

CryptDestroyHash

RegQueryInfoKeyW

RegSetValueExW

RegDeleteValueW

GetTokenInformation

LookupAccountSidW

RegOpenKeyW

RegNotifyChangeKeyValue

RegisterEventSourceW

OpenProcessToken

CryptAcquireContextW

OpenThreadToken

CryptGetHashParam

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE