IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

??1type_info@@UEAA@XZ

iswspace

?terminate@@YAXXZ

_commode

_fmode

_wcmdln

_initterm

__setusermatherr

_cexit

_exit

exit

__set_app_type

__wgetmainargs

_amsg_exit

_XcptFilter

_CxxThrowException

??0exception@@QEAA@AEBQEBDH@Z

_callnewh

?what@exception@@UEBAPEBDXZ

memmove_s

??0exception@@QEAA@AEBQEBD@Z

wcsstr

_lock

wcstok

_errno

wcsrchr

_beginthreadex

wcstoul

towupper

wcsncmp

memmove

_wcsicmp

iswdigit

_vsnprintf

_wcsnicmp

_purecall

wcscat_s

_vsnprintf_s

malloc

realloc

free

??0exception@@QEAA@XZ

memcpy_s

??0exception@@QEAA@AEBV0@@Z

??1exception@@UEAA@XZ

_vsnwprintf

_unlock

__dllonexit

_onexit

memset

_vscwprintf

__CxxFrameHandler3

memcpy

qsort

__C_specific_handler

memcmp

wcscmp

GetErrorInfo

SysFreeString

VariantClear

LoadRegTypeLi

VarUI4FromStr

VariantCopy

VariantInit

SysAllocStringLen

SysStringLen

SysAllocString

VariantChangeType

FormatMessageW

InitializeCriticalSection

DeleteCriticalSection

WaitForSingleObjectEx

OpenSemaphoreW

EnterCriticalSection

LeaveCriticalSection

SetEvent

InitializeCriticalSectionAndSpinCount

WaitForMultipleObjectsEx

WaitForSingleObject

CreateWaitableTimerExW

SetWaitableTimer

CancelWaitableTimer

CreateEventW

ReleaseMutex

CreateMutexExW

CreateSemaphoreExW

ReleaseSemaphore

ResetEvent

SetErrorMode

RaiseException

GetLastError

SetUnhandledExceptionFilter

UnhandledExceptionFilter

SetLastError

Sleep

InitOnceComplete

InitOnceBeginInitialize

ResumeThread

OpenProcessToken

GetCurrentProcessId

OpenThread

CreateThread

GetStartupInfoW

GetCurrentThreadId

GetCurrentThread

OpenThreadToken

GetCurrentProcess

TerminateProcess

SetThreadPriority

CoSetProxyBlanket

CoTaskMemRealloc

CoTaskMemFree

CoImpersonateClient

CoFreeUnusedLibraries

CoTaskMemAlloc

CoGetClassObject

CLSIDFromString

CoCreateInstance

CoGetObjectContext

CoRegisterClassObject

CoCreateGuid

CoInitializeSecurity

CoDisconnectContext

CoInitializeEx

CoRevertToSelf

CoRevokeClassObject

StringFromCLSID

CoUninitialize

MultiByteToWideChar

CompareStringW

CloseHandle

VirtualProtect

VirtualAlloc

VirtualQuery

GetSystemWindowsDirectoryW

GetSystemDirectoryW

GetSystemTimeAsFileTime

GetTickCount64

GetVersionExW

GetSystemInfo

GetTickCount

GetComputerNameExW

DebugBreak

IsDebuggerPresent

OutputDebugStringW

GetModuleHandleW

GetModuleFileNameW

GetModuleHandleExW

FindResourceExW

LoadResource

SizeofResource

LoadStringW

GetModuleFileNameA

GetProcAddress

FreeLibrary

LoadLibraryExW

HeapFree

HeapAlloc

GetProcessHeap

HeapSetInformation

CharPrevW

CharNextW

RegDeleteValueW

RegQueryValueExW

RegCreateKeyExW

RegEnumKeyExW

RegOpenKeyExW

RegQueryInfoKeyW

RegDeleteTreeW

RegEnumValueW

RegSetValueExW

RegCloseKey

lstrcmpiW

lstrcpynW

RtlNtStatusToDosError

RtlAdjustPrivilege

EtwTraceMessage

NtThawRegistry

NtFreezeRegistry

NtClose

NtCreateSymbolicLinkObject

RtlInitUnicodeString

NtThawTransactions

NtFreezeTransactions

NtQuerySystemInformation

RtlNtStatusToDosErrorNoTeb

NtQueryVolumeInformationFile

EtwUnregisterTraceGuids

EtwRegisterTraceGuidsW

EtwGetTraceEnableFlags

EtwGetTraceEnableLevel

EtwGetTraceLoggerHandle

StartServiceCtrlDispatcherW

RegisterServiceCtrlHandlerExW

SetServiceStatus

GetEnvironmentVariableW

GetCommandLineW

ExpandEnvironmentStringsW

LocalAlloc

LocalFree

SetFileAttributesW

WriteFile

FlushFileBuffers

FindFirstVolumeW

GetFileAttributesW

DeleteFileW

ReadFile

GetDriveTypeW

GetDiskFreeSpaceW

DefineDosDeviceW

DeleteVolumeMountPointW

GetVolumeInformationW

CreateDirectoryW

CreateFileW

FindNextVolumeW

GetVolumePathNameW

QueryDosDeviceW

FindFirstFileW

FindNextFileW

FindClose

FindVolumeClose

DeviceIoControl

GetOverlappedResult

GetVolumeNameForVolumeMountPointW

GetVolumePathNamesForVolumeNameW

FreeSid

AllocateAndInitializeSid

GetTokenInformation

GetLengthSid

CheckTokenMembership

PrivilegeCheck

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

AdjustTokenPrivileges

AddAccessAllowedAce

EqualSid

SetSecurityDescriptorOwner

CopySid

SetSecurityDescriptorGroup

GetAclInformation

DuplicateToken

AddAce

AddAccessDeniedAceEx

AddAccessAllowedAceEx

IsValidSid

AccessCheck

GetSidSubAuthorityCount

EqualDomainSid

CreateWellKnownSid

InitializeAcl

GetAce

SetVolumeMountPointW

EventRegister

EventWriteTransfer

EventSetInformation

EventUnregister

RpcStringFreeW

UuidToStringW

I_RpcBindingInqLocalClientPID

MoveFileExW

I_ScRegisterDeviceNotification

I_ScUnregisterDeviceNotification

GetComputerNameW

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

QueryPerformanceCounter

CreateWriterEx

VssFreeSnapshotPropertiesInternal

CreateVssSnapshotSetDescription

LoadVssSnapshotSetDescription

CreateWriter

DevObjGetClassDevs

DevObjDestroyDeviceInfoList

DevObjCreateDeviceInfoList

DevObjEnumDeviceInterfaces

DevObjGetDeviceInterfaceDetail

DevObjUninstallDevice

DevObjGetDeviceRegistryProperty

DevObjEnumDeviceInfo

ord6

ord3

ord10

ord4

ord1

ord2

ord8

ord7

ord11

ord9

ord5

ReportEventW

DeregisterEventSource

RegisterEventSourceW

AuthzReportSecurityEventFromParams

AuthzRegisterSecurityEventSource

AuthzUnregisterSecurityEventSource

OpenProcess

QueryFullProcessImageNameW

GetTimeZoneInformation

ResolveDelayLoadedAPI

DelayLoadFailureHook

GetStorageDependencyInformation

BcdCloseObject

BcdForciblyUnloadStore

BcdOpenSystemStore

BcdOpenObject

BcdGetElementData

BcdCloseStore

EncodePointer

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE