IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

CDFindCommonCSystemWithKey

CDLocateCheckSum

MD5Init

MD5Update

CDGenerateRandomBits

CDBuildIntegrityVect

MD5Final

CDLocateCSystem

ASN1BERDecU32Val

ASN1BEREncEndOfContents

ASN1BERDecSXVal

ASN1objectidentifier_free

ASN1BEREncOctetString

ASN1BEREncS32

ASN1BERDecNotEndOfContents

ASN1BERDecS32Val

ASN1DecSetError

ASN1_CreateEncoder

ASN1_FreeEncoded

ASN1intx_free

ASN1BERDecGeneralizedTime

ASN1CEREncGeneralizedTime

ASN1Free

ASN1DecAlloc

ASN1intx2uint32

ASN1BEREncBool

ASN1BERDecPeekTag

ASN1_CreateDecoder

ASN1_Decode

ASN1BEREncOpenType

ASN1_CloseEncoder

ASN1BERDecBool

ASN1BEREncObjectIdentifier

ASN1BERDecZeroCharString

ASN1BERDecSkip

ASN1bitstring_free

ASN1EncSetError

ASN1charstring_free

ASN1_Encode

ASN1_CreateModule

ASN1octetstring_free

ASN1BEREncCharString

ASN1intx2int32

ASN1BERDecExplicitTag

ASN1BEREncU32

ASN1BERDecOctetString

ASN1BEREncExplicitTag

ASN1intx_setuint32

ASN1intxisuint32

ASN1_FreeDecoded

ASN1ztcharstring_free

ASN1BERDecBitString

ASN1_CloseDecoder

ASN1BEREncSX

ASN1BEREncBitString

ASN1BERDecOpenType2

ASN1BERDecObjectIdentifier

ASN1BERDecEndOfContents

ASN1BERDecCharString

wsprintfW

CharLowerBuffW

SetThreadToken

RegEnumKeyExW

OpenThreadToken

TraceEvent

RegSetValueExW

RevertToSelf

SystemFunction007

RegQueryValueExW

ReportEventW

OpenProcessToken

RegCloseKey

GetTraceLoggerHandle

CryptCreateHash

RegConnectRegistryW

LookupAccountSidW

OpenServiceW

RegNotifyChangeKeyValue

QueryServiceStatus

RegDeleteValueW

CryptAcquireContextW

CryptGetHashParam

CredUnmarshalCredentialW

CryptReleaseContext

DeregisterEventSource

CredFree

CryptHashData

RegOpenKeyExW

SystemFunction006

CryptSetProvParam

RegQueryInfoKeyW

QueryServiceConfigW

OpenSCManagerW

CryptGetProvParam

RegisterEventSourceW

RegCreateKeyExW

AllocateAndInitializeSid

CryptDestroyHash

RegOpenKeyW

RegisterTraceGuidsW

FreeSid

GetTokenInformation

CloseServiceHandle

RtlCreateSecurityDescriptor

RtlAnsiStringToUnicodeString

RtlAppendUnicodeStringToString

RtlAddAccessAllowedAce

RtlAllocateAndInitializeSid

RtlRunDecodeUnicodeString

RtlInitializeSid

NtOpenThreadToken

RtlInitializeCriticalSection

RtlCopyUnicodeString

RtlPrefixUnicodeString

RtlCreateTimer

RtlSystemTimeToLocalTime

RtlAcquireResourceExclusive

RtlLeaveCriticalSection

RtlFreeAnsiString

RtlInitializeGenericTable

NtAllocateVirtualMemory

RtlVerifyVersionInfo

RtlFreeUnicodeString

NtQueryInformationToken

RtlEqualSid

RtlInitializeGenericTableAvl

RtlCreateAcl

RtlTimeFieldsToTime

RtlDeleteElementGenericTable

NtQuerySystemInformation

RtlInitAnsiString

RtlCompareMemory

RtlCopySid

RtlInsertElementGenericTableAvl

RtlUniform

RtlCompareUnicodeString

NtAllocateLocallyUniqueId

RtlEnterCriticalSection

RtlEqualDomainName

RtlSubAuthoritySid

NtOpenProcessToken

RtlOemStringToUnicodeString

RtlUnicodeStringToAnsiString

RtlDeleteResource

RtlInsertElementGenericTable

RtlLengthRequiredSid

RtlInitializeResource

RtlSubAuthorityCountSid

RtlConvertSharedToExclusive

RtlConvertSidToUnicodeString

RtlSetDaclSecurityDescriptor

RtlLookupElementGenericTable

RtlValidSid

RtlFreeSid

RtlReleaseResource

RtlTimeToTimeFields

RtlInitUnicodeString

RtlDeleteTimerQueue

DbgPrint

NtQuerySystemTime

RtlLookupElementGenericTableAvl

NtOpenEvent

NtCreateEvent

NtClose

RtlIntegerToUnicodeString

RtlGetElementGenericTable

RtlRegisterWait

NtWaitForSingleObject

RtlEqualUnicodeString

NtDuplicateObject

RtlCreateTimerQueue

NtSetSecurityObject

RtlCopyLuid

RtlDowncaseUnicodeString

RtlDeleteCriticalSection

RtlLengthSid

RtlEraseUnicodeString

RtlNtStatusToDosError

VerSetConditionMask

RtlDeregisterWait

RtlAcquireResourceShared

CredMarshalTargetInfo

LsaGetLogonSessionData

FreeContextBuffer

LsaFreeReturnBuffer

CredUnmarshalTargetInfo

GetCurrentThread

GetLocalTime

GetLastError

MultiByteToWideChar

LocalFree

RaiseException

Sleep

DisableThreadLibraryCalls

CreateFileW

WideCharToMultiByte

lstrlenA

GetProcAddress

UnregisterWait

LocalAlloc

GetModuleFileNameA

DeleteCriticalSection

SetUnhandledExceptionFilter

FileTimeToSystemTime

WriteFile

GetCurrentThreadId

CreateEventW

GetSystemTimeAsFileTime

InterlockedExchange

lstrcmpW

LoadLibraryW

OpenEventW

GetComputerNameExW

InterlockedDecrement

QueryPerformanceCounter

ExpandEnvironmentStringsW

lstrcmpiA

GetACP

RegisterWaitForSingleObjectEx

UnmapViewOfFile

FormatMessageW

GetEnvironmentVariableW

GetProfileStringA

EnterCriticalSection

SetEvent

GetCurrentProcess

UnhandledExceptionFilter

GetComputerNameW

CreateFileMappingW

GetModuleHandleW

LoadLibraryA

GetCurrentProcessId

InitializeCriticalSection

InterlockedCompareExchange

GetTickCount

MapViewOfFileEx

InterlockedIncrement

lstrcpyW

GetModuleFileNameW

CreateFileA

InterlockedExchangeAdd

DebugBreak

CloseHandle

VirtualAlloc

OutputDebugStringA

TerminateProcess

OpenFileMappingW

LeaveCriticalSection

lstrlenW

GetSystemInfo

FreeLibrary

_strcmpi

wcstoul

_vsnprintf

_ultoa

wcscmp

_wcsicmp

swprintf

sscanf

_initterm

sprintf

wcslen

_wcsnicmp

free

_adjust_fdiv

strrchr

_strnicmp

strchr

wcsspn

qsort

malloc

wcsrchr

wcscpy

wcscat

_except_handler3

_stricmp

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE