IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

SecLookupWellKnownSid

memcpy_s

RtlInitUnicodeString

RtlGUIDFromString

KeSetEvent

EtwWrite

RtlGetVersion

RtlInitAnsiString

RtlAnsiStringToUnicodeString

RtlFreeUnicodeString

KeDelayExecutionThread

KeInitializeEvent

KeReadStateEvent

RtlCompareMemory

MmGetSystemRoutineAddress

IoWMIRegistrationControl

EtwRegister

ZwQueryInformationToken

MmMapIoSpace

MmUnmapIoSpace

PoRegisterPowerSettingCallback

PoUnregisterPowerSettingCallback

KeClearEvent

KeWaitForSingleObject

IoAllocateErrorLogEntry

IoWriteErrorLogEntry

KeResetEvent

KeWaitForMultipleObjects

ZwPowerInformation

RtlIpv4AddressToStringW

RtlIpv6AddressToStringW

RtlAnsiCharToUnicodeChar

KeBugCheckEx

ZwOpenProcessTokenEx

RtlEqualSid

RtlCopyUnicodeString

RtlValidSid

ZwClose

ExFreePoolWithTag

ExAllocatePoolWithTag

EtwUnregister

KeStallExecutionProcessor

WdfVersionBindClass

WdfVersionUnbind

WdfVersionBind

WdfVersionUnbindClass

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ