IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

AdjustTokenPrivileges

LookupPrivilegeValueW

OpenProcessToken

ConvertStringSecurityDescriptorToSecurityDescriptorW

RegCloseKey

RegDeleteValueW

RegQueryValueExW

GetUserNameW

InitiateSystemShutdownExW

CreateWellKnownSid

InitializeAcl

SetEntriesInAclW

DecryptFileW

ChangeServiceConfigW

ControlService

CloseServiceHandle

QueryServiceStatus

OpenServiceW

OpenSCManagerW

CryptAcquireContextW

CryptCreateHash

CryptHashData

CryptGetHashParam

CryptDestroyHash

CryptReleaseContext

RegDeleteKeyW

RegCreateKeyExW

RegEnumKeyExW

RegEnumValueW

RegQueryInfoKeyW

RegSetValueExW

SetEntriesInAclA

SetSecurityDescriptorGroup

RegOpenKeyExW

GetTokenInformation

CheckTokenMembership

AllocateAndInitializeSid

FreeSid

LookupAccountNameW

SetNamedSecurityInfoW

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

SetSecurityDescriptorOwner

QueryServiceConfigW

GetMessageW

PeekMessageW

PostMessageW

PostThreadMessageW

PostQuitMessage

SetWindowLongW

DefWindowProcW

UnregisterClassW

DispatchMessageW

TranslateMessage

GetMonitorInfoW

IsDialogMessageW

MessageBoxW

GetWindowLongW

RegisterClassW

IsWindow

MsgWaitForMultipleObjects

WaitForInputIdle

LoadCursorW

LoadBitmapW

GetCursorPos

MonitorFromPoint

CreateWindowExW

SysFreeString

SysAllocString

VariantInit

VariantClear

DeleteObject

GetObjectW

CreateCompatibleDC

SelectObject

DeleteDC

StretchBlt

ShellExecuteExW

SHGetFolderPathW

CommandLineToArgvW

CoTaskMemFree

CoInitializeSecurity

CLSIDFromProgID

CoCreateInstance

CoInitialize

StringFromGUID2

CoInitializeEx

CoUninitialize

ReadFile

SetFilePointerEx

CreateFileW

GetCurrentProcessId

GetProcessId

WriteFile

ConnectNamedPipe

SetNamedPipeHandleState

lstrlenW

CompareStringW

LocalFree

CreateNamedPipeW

WaitForSingleObject

OpenProcess

lstrlenA

RemoveDirectoryW

GetFileAttributesW

ExpandEnvironmentStringsW

LeaveCriticalSection

EnterCriticalSection

FreeLibrary

GetProcAddress

VerifyVersionInfoW

VerSetConditionMask

GetComputerNameW

GetTempPathW

GetSystemDirectoryW

GetSystemWow64DirectoryW

GetVolumePathNameW

GetWindowsDirectoryW

GetSystemDefaultLangID

RtlUnwind

GetDateFormatW

GetSystemTime

InterlockedExchange

LoadLibraryW

InterlockedCompareExchange

GetExitCodeThread

CreateThread

SetEvent

WaitForMultipleObjects

CreateEventW

ProcessIdToSessionId

InterlockedIncrement

InterlockedDecrement

GetStringTypeW

GetModuleHandleW

FindClose

FindNextFileW

FindFirstFileW

CreateProcessW

SetCurrentDirectoryW

GetCurrentDirectoryW

GetExitCodeProcess

DuplicateHandle

SetThreadExecutionState

CopyFileExW

UnmapViewOfFile

MapViewOfFile

CreateFileMappingW

CreateMutexW

SetEndOfFile

ResetEvent

SetFileTime

LocalFileTimeToFileTime

DosDateTimeToFileTime

CreateFileA

CompareStringA

GetSystemTimeAsFileTime

VirtualFree

VirtualAlloc

DeleteFileW

GetThreadLocale

GetVersionExW

GetCurrentThreadId

TlsAlloc

TlsSetValue

ReleaseMutex

GetLastError

Sleep

TlsGetValue

CloseHandle

DeleteCriticalSection

GetTimeZoneInformation

GetACP

GetCPInfo

RaiseException

HeapAlloc

HeapFree

IsDebuggerPresent

UnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

SystemTimeToTzSpecificLocalTime

SystemTimeToFileTime

GlobalAlloc

GlobalFree

SetFilePointer

WideCharToMultiByte

GetConsoleCP

GetConsoleMode

TlsFree

InitializeCriticalSection

GetCurrentProcess

HeapSetInformation

GetOEMCP

SetFileAttributesW

IsValidCodePage

HeapSize

HeapReAlloc

LCMapStringW

MultiByteToWideChar

SetStdHandle

WriteConsoleW

FlushFileBuffers

GetLocalTime

FormatMessageW

GetTempFileNameW

GetFullPathNameW

CreateDirectoryW

GetProcessHeap

GetModuleHandleA

GetFileSizeEx

GetUserDefaultLangID

GetTickCount

QueryPerformanceCounter

HeapCreate

SetLastError

EncodePointer

GetFileType

InitializeCriticalSectionAndSpinCount

SetHandleCount

GetEnvironmentStringsW

MoveFileExW

FreeEnvironmentStringsW

GetModuleFileNameW

GetStdHandle

DecodePointer

GetCommandLineW

GetStartupInfoW

SetUnhandledExceptionFilter

ExitProcess

CopyFileW

ord23

ord22

ord20

CryptHashPublicKeyInfo

CertGetCertificateContextProperty

ord116

ord17

ord125

ord171

ord8

ord115

ord118

ord205

ord45

ord137

ord141

ord238

ord190

ord88

ord90

ord173

ord111

ord70

ord169

UuidCreate

InternetCrackUrlW

HttpQueryInfoW

InternetCloseHandle

HttpAddRequestHeadersW

HttpOpenRequestW

InternetErrorDlg

InternetReadFile

HttpSendRequestW

InternetSetOptionW

InternetConnectW

InternetOpenW

CryptCATAdminCalcHashFromFileHandle

WTHelperProvDataFromStateData

WTHelperGetProvSignerFromChain

WinVerifyTrust

GetFileVersionInfoW

GetFileVersionInfoSizeW

VerQueryValueW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

AdjustTokenPrivileges

LookupPrivilegeValueW

OpenProcessToken

ConvertStringSecurityDescriptorToSecurityDescriptorW

RegCloseKey

RegDeleteValueW

RegQueryValueExW

GetUserNameW

InitiateSystemShutdownExW

CreateWellKnownSid

InitializeAcl

SetEntriesInAclW

DecryptFileW

ChangeServiceConfigW

ControlService

CloseServiceHandle

QueryServiceStatus

OpenServiceW

OpenSCManagerW

CryptAcquireContextW

CryptCreateHash

CryptHashData

CryptGetHashParam

CryptDestroyHash

CryptReleaseContext

RegDeleteKeyW

RegCreateKeyExW

RegEnumKeyExW

RegEnumValueW

RegQueryInfoKeyW

RegSetValueExW

SetEntriesInAclA

SetSecurityDescriptorGroup

RegOpenKeyExW

GetTokenInformation

CheckTokenMembership

AllocateAndInitializeSid

FreeSid

LookupAccountNameW

SetNamedSecurityInfoW

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

SetSecurityDescriptorOwner

QueryServiceConfigW

GetMessageW

PeekMessageW

PostMessageW

PostThreadMessageW

PostQuitMessage

SetWindowLongW

DefWindowProcW

UnregisterClassW

DispatchMessageW

TranslateMessage

GetMonitorInfoW

IsDialogMessageW

MessageBoxW

GetWindowLongW

RegisterClassW

IsWindow

MsgWaitForMultipleObjects

WaitForInputIdle

LoadCursorW

LoadBitmapW

GetCursorPos

MonitorFromPoint

CreateWindowExW

SysFreeString

SysAllocString

VariantInit

VariantClear

DeleteObject

GetObjectW

CreateCompatibleDC

SelectObject

DeleteDC

StretchBlt

ShellExecuteExW

SHGetFolderPathW

CommandLineToArgvW

CoTaskMemFree

CoInitializeSecurity

CLSIDFromProgID

CoCreateInstance

CoInitialize

StringFromGUID2

CoInitializeEx

CoUninitialize

ReadFile

SetFilePointerEx

CreateFileW

GetCurrentProcessId

GetProcessId

WriteFile

ConnectNamedPipe

SetNamedPipeHandleState

lstrlenW

CompareStringW

LocalFree

CreateNamedPipeW

WaitForSingleObject

OpenProcess

lstrlenA

RemoveDirectoryW

GetFileAttributesW

ExpandEnvironmentStringsW

LeaveCriticalSection

EnterCriticalSection

FreeLibrary

GetProcAddress

VerifyVersionInfoW

VerSetConditionMask

GetComputerNameW

GetTempPathW

GetSystemDirectoryW

GetSystemWow64DirectoryW

GetVolumePathNameW

GetWindowsDirectoryW

GetSystemDefaultLangID

RtlUnwind

GetDateFormatW

GetSystemTime

InterlockedExchange

LoadLibraryW

InterlockedCompareExchange

GetExitCodeThread

CreateThread

SetEvent

WaitForMultipleObjects

CreateEventW

ProcessIdToSessionId

InterlockedIncrement

InterlockedDecrement

GetStringTypeW

GetModuleHandleW

FindClose

FindNextFileW

FindFirstFileW

CreateProcessW

SetCurrentDirectoryW

GetCurrentDirectoryW

GetExitCodeProcess

DuplicateHandle

SetThreadExecutionState

CopyFileExW

UnmapViewOfFile

MapViewOfFile

CreateFileMappingW

CreateMutexW

SetEndOfFile

ResetEvent

SetFileTime

LocalFileTimeToFileTime

DosDateTimeToFileTime

CreateFileA

CompareStringA

GetSystemTimeAsFileTime

VirtualFree

VirtualAlloc

DeleteFileW

GetThreadLocale

GetVersionExW

GetCurrentThreadId

TlsAlloc

TlsSetValue

ReleaseMutex

GetLastError

Sleep

TlsGetValue

CloseHandle

DeleteCriticalSection

GetTimeZoneInformation

GetACP

GetCPInfo

RaiseException

HeapAlloc

HeapFree

IsDebuggerPresent

UnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

SystemTimeToTzSpecificLocalTime

SystemTimeToFileTime

GlobalAlloc

GlobalFree

SetFilePointer

WideCharToMultiByte

GetConsoleCP

GetConsoleMode

TlsFree

InitializeCriticalSection

GetCurrentProcess

HeapSetInformation

GetOEMCP

SetFileAttributesW

IsValidCodePage

HeapSize

HeapReAlloc

LCMapStringW

MultiByteToWideChar

SetStdHandle

WriteConsoleW

FlushFileBuffers

GetLocalTime

FormatMessageW

GetTempFileNameW

GetFullPathNameW

CreateDirectoryW

GetProcessHeap

GetModuleHandleA

GetFileSizeEx

GetUserDefaultLangID

GetTickCount

QueryPerformanceCounter

HeapCreate

SetLastError

EncodePointer

GetFileType

InitializeCriticalSectionAndSpinCount

SetHandleCount

GetEnvironmentStringsW

MoveFileExW

FreeEnvironmentStringsW

GetModuleFileNameW

GetStdHandle

DecodePointer

GetCommandLineW

GetStartupInfoW

SetUnhandledExceptionFilter

ExitProcess

CopyFileW

ord23

ord22

ord20

CryptHashPublicKeyInfo

CertGetCertificateContextProperty

ord116

ord17

ord125

ord171

ord8

ord115

ord118

ord205

ord45

ord137

ord141

ord238

ord190

ord88

ord90

ord173

ord111

ord70

ord169

UuidCreate

InternetCrackUrlW

HttpQueryInfoW

InternetCloseHandle

HttpAddRequestHeadersW

HttpOpenRequestW

InternetErrorDlg

InternetReadFile

HttpSendRequestW

InternetSetOptionW

InternetConnectW

InternetOpenW

CryptCATAdminCalcHashFromFileHandle

WTHelperProvDataFromStateData

WTHelperGetProvSignerFromChain

WinVerifyTrust

GetFileVersionInfoW

GetFileVersionInfoSizeW

VerQueryValueW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ