IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

SHDeleteKeyA

_strcmpi

_adjust_fdiv

_initterm

_onexit

__dllonexit

calloc

_beginthreadex

wcstombs

realloc

strchr

strncat

printf

time

srand

rand

atoi

strncpy

strrchr

_except_handler3

malloc

free

__CxxFrameHandler

strstr

_ftol

ceil

memmove

??3@YAXPAX@Z

??2@YAPAXI@Z

_strnicmp

WSACleanup

sendto

WSAIoctl

setsockopt

htonl

htons

gethostbyname

socket

WSASocketA

inet_ntoa

ntohs

recv

closesocket

select

send

inet_addr

WSAStartup

WSAGetLastError

gethostname

getsockname

connect

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

?_Xran@std@@YAXXZ

?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ

?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z

?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z

?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

ord537

ord6648

ord2764

ord4129

ord926

ord535

ord924

ord922

ord858

ord6663

ord860

ord4278

ord2818

ord939

ord6877

ord800

ord540

ExitThread

GetTickCount

MoveFileExA

GetSystemDirectoryA

GetStartupInfoA

CreatePipe

DisconnectNamedPipe

TerminateProcess

PeekNamedPipe

WaitForMultipleObjects

OpenProcess

GetVersionExA

ReleaseMutex

OpenEventA

SetErrorMode

CreateMutexA

SetUnhandledExceptionFilter

FreeConsole

LocalSize

Process32Next

Process32First

CreateToolhelp32Snapshot

lstrcmpiA

GetCurrentThreadId

GlobalMemoryStatus

LoadLibraryA

GetProcAddress

FreeLibrary

VirtualAllocEx

WriteProcessMemory

CreateRemoteThread

GetCurrentProcess

SetLastError

GetModuleFileNameA

MoveFileA

WriteFile

SetFilePointer

ReadFile

CreateFileA

GetFileSize

RemoveDirectoryA

LocalAlloc

FindFirstFileA

LocalReAlloc

FindNextFileA

GetLogicalDriveStringsA

LocalFree

FindClose

GetVolumeInformationA

GetDiskFreeSpaceExA

GetDriveTypeA

lstrcatA

CreateProcessA

lstrlenA

CreateEventA

CloseHandle

TerminateThread

WaitForSingleObject

SetEvent

CreateThread

InitializeCriticalSection

DeleteCriticalSection

VirtualFree

LeaveCriticalSection

EnterCriticalSection

VirtualAlloc

ResetEvent

lstrcpyA

InterlockedExchange

CancelIo

Sleep

DeleteFileA

GetLastError

CreateDirectoryA

GetFileAttributesA

GetWindowThreadProcessId

IsWindowVisible

GetWindowTextA

EnumWindows

CloseDesktop

SetThreadDesktop

GetProcessWindowStation

GetUserObjectInformationA

GetThreadDesktop

OpenDesktopA

OpenWindowStationA

SetProcessWindowStation

wsprintfA

CharNextA

OpenInputDesktop

RegCloseKey

RegOpenKeyExA

CloseServiceHandle

DeleteService

ControlService

QueryServiceStatus

OpenServiceA

OpenSCManagerA

RegSetValueExA

RegCreateKeyA

RegQueryValueExA

RegOpenKeyA

RegCreateKeyExA

AdjustTokenPrivileges

LookupPrivilegeValueA

OpenProcessToken

RegEnumValueA

RegEnumKeyExA

RegDeleteValueA

RegDeleteKeyA

SetServiceStatus

RegisterServiceCtrlHandlerA

RegQueryValueA

SHGetFileInfoA

InternetReadFile

InternetOpenA

InternetOpenUrlA

InternetCloseHandle

capGetDriverDescriptionA

EnumProcessModules

GetModuleFileNameExA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ