IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

RegCreateKeyExW

RegQueryValueExW

RegEnumValueW

RegOpenKeyExW

RegCloseKey

RegSetValueExW

RegCreateKeyW

RegSetValueW

RegOpenKeyW

RegQueryInfoKeyW

RegDeleteKeyW

RegDeleteValueW

RegEnumKeyExW

RegGetValueW

OpenThreadToken

CryptEncrypt

CryptGetKeyParam

CryptSetKeyParam

CryptDeriveKey

CryptDestroyKey

CryptVerifySignatureW

CryptSetHashParam

CryptGenRandom

CryptDestroyHash

CryptGetHashParam

CryptHashData

CryptCreateHash

CryptReleaseContext

CryptAcquireContextW

ConvertSidToStringSidW

EventWrite

GetNamedSecurityInfoW

SetNamedSecurityInfoW

AddMandatoryAce

SetSecurityDescriptorSacl

GetSecurityDescriptorSacl

IsValidSid

CopySid

GetTokenInformation

OpenProcessToken

GetSecurityDescriptorDacl

GetLengthSid

AddAce

FreeSid

ConvertStringSecurityDescriptorToSecurityDescriptorW

AllocateAndInitializeSid

InitializeAcl

SetKernelObjectSecurity

GetAce

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

EqualSid

GetKernelObjectSecurity

AddAccessAllowedAceEx

GetSidSubAuthorityCount

DeleteAce

GetSidSubAuthority

GetSidIdentifierAuthority

ConvertStringSidToSidW

CheckTokenMembership

GetCurrentThread

FreeLibrary

SetErrorMode

GetEnvironmentVariableW

QueueUserWorkItem

QueryPerformanceFrequency

LCMapStringW

GetSystemTime

GetUserDefaultLocaleName

OpenFileMappingW

CreateFileMappingW

OpenMutexW

GetFileSizeEx

FlushFileBuffers

SetFileTime

FlushViewOfFile

SystemTimeToFileTime

SetEndOfFile

UnmapViewOfFile

MapViewOfFile

GetFullPathNameW

ReleaseMutex

GetSystemInfo

GetSystemDefaultLangID

GetUserPreferredUILanguages

MultiByteToWideChar

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

CreateMutexW

RaiseException

VirtualAlloc

GetFileAttributesW

OpenProcess

GetProcessHeap

HeapFree

HeapAlloc

LocalAlloc

WideCharToMultiByte

GetNativeSystemInfo

IsWow64Process

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

GetModuleHandleA

TerminateProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetStartupInfoW

GetModuleHandleW

GetSystemDirectoryW

LoadLibraryW

ExpandEnvironmentStringsW

DuplicateHandle

GetStdHandle

GetTempPathW

GetExitCodeProcess

CompareStringOrdinal

WaitForSingleObject

GetTempFileNameW

SetFilePointer

SetFileAttributesW

DeleteFileW

CloseHandle

GetVersionExA

GetShortPathNameW

FindNextFileW

SetCurrentDirectoryW

LockResource

FindClose

GetCurrentDirectoryW

lstrcmpW

CreateFileW

ReadFile

SizeofResource

WriteFile

GetTickCount

FindFirstFileExW

CreateDirectoryW

GetCurrentProcess

CreateProcessW

LoadResource

FindResourceW

FindFirstFileW

SetPriorityClass

LocalFree

HeapSetInformation

GetProcAddress

GetLastError

GetModuleFileNameW

GetVersionExW

Sleep

CharNextW

GetShellWindow

SendMessageTimeoutW

LoadStringW

PostMessageW

_vsnwprintf_s

_purecall

rand_s

wcscat_s

iswalpha

wcschr

memset

wcsnlen

strnlen

??_V@YAXPAX@Z

sprintf_s

_wfopen_s

fgetws

swscanf_s

fclose

??2@YAPAXI@Z

_XcptFilter

isalnum

_wtoi

_ultow_s

wcsrchr

_wcsnicmp

??_U@YAPAXI@Z

_time64

_vsnwprintf

??3@YAXPAX@Z

_CxxThrowException

memcmp

wcsncpy_s

_onexit

__dllonexit

_unlock

_lock

_except_handler4_common

_controlfp

?terminate@@YAXXZ

??1type_info@@UAE@XZ

_wcmdln

_initterm

__setusermatherr

__p__fmode

_cexit

_exit

exit

__set_app_type

__wgetmainargs

_amsg_exit

__p__commode

memcpy_s

CommandLineToArgvW

SHSetLocalizedName

ord190

SHChangeNotify

SHCreateItemFromParsingName

SHGetSpecialFolderLocation

SHGetKnownFolderPath

ord526

SHGetDesktopFolder

ord155

ord165

SHGetFolderPathW

SHGetSpecialFolderPathW

ExecuteCabW

RegRestoreAllW

SHCopyKeyW

StrCmpIW

SHRegSetUSValueW

ord388

PathFileExistsW

SHDeleteKeyW

StrCmpNIW

PathFindFileNameW

SHDeleteValueW

PathRemoveBlanksW

SHGetValueW

SHSetValueW

SHStrDupW

ord158

SHRegDeleteUSValueW

StrStrW

SHRegGetUSValueW

StrTrimW

PathRemoveExtensionW

ord2

UrlCreateFromPathW

UrlCanonicalizeW

UrlApplySchemeW

PathIsURLW

StrCmpNIA

ord487

UrlEscapeW

UrlUnescapeW

PathIsNetworkPathW

StrStrIW

ord219

ord433

StrCmpW

StrCmpNA

StrCmpNW

ord151

ord701

ord654

ord665

ord660

ord675

ord678

ord672

ord655

ord682

ord651

ord657

ord650

ord652

ord653

ord662

ord91

ord74

ord81

ord90

ord76

ord85

ord79

ord134

ord398

ord791

ord559

ord281

ord282

ord677

ord558

VariantClear

SysStringByteLen

VarBstrCat

SysAllocStringLen

VarBstrCmp

SysAllocStringByteLen

VariantCopy

SysStringLen

SysFreeString

VariantInit

SysAllocString

OleInitialize

OleUninitialize

CoCreateInstance

CoUninitialize

PropVariantClear

CoTaskMemFree

CoInitializeEx

StringFromGUID2

CoCreateGuid

BrandIEActiveSetup

CertGetIntendedKeyUsage

CertGetEnhancedKeyUsage

CryptStringToBinaryW

CertGetNameStringW

CertOpenStore

CertCreateCertificateContext

CertAddCertificateContextToStore

CertFreeCertificateContext

CertCloseStore

CertFindCertificateInStore

CryptImportPublicKeyInfo

CertGetCertificateChain

CertVerifyCertificateChainPolicy

CertFreeCertificateChain

CryptHashCertificate

CryptStringToBinaryA

CryptBinaryToStringA

CertGetCertificateContextProperty

CertEnumCertificatesInStore

CreateIUriBuilder

CreateUri

ord410

ord414

CoInternetCreateSecurityManager

InternetReadFile

HttpSendRequestW

InternetCanonicalizeUrlW

InternetCrackUrlW

InternetOpenW

InternetConnectW

HttpOpenRequestW

InternetCloseHandle

HttpQueryInfoW

SLGetWindowsInformation

NetApiBufferFree

NetGetJoinInformation

VerQueryValueW

GetFileVersionInfoSizeExW

GetFileVersionInfoExW

ord123

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE