IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

WideCharToMultiByte

GetTempFileNameA

GetSystemDirectoryA

GetLogicalDriveStringsA

QueryDosDeviceA

MultiByteToWideChar

GetProcessHandleCount

DuplicateHandle

WriteProcessMemory

ReadProcessMemory

lstrcpyn

GetCurrentThreadId

ResumeThread

CreateRemoteThread

GetProcessHeap

GetModuleHandleA

ExitProcess

HeapAlloc

HeapReAlloc

HeapFree

IsBadReadPtr

ReadFile

GetFileSize

CreateFileA

DeleteFileA

MulDiv

GetDiskFreeSpaceA

GetCurrentDirectoryA

VirtualAllocEx

GetCommandLineA

GetModuleFileNameA

FreeLibrary

GetProcAddress

LoadLibraryA

LCMapStringA

VirtualAlloc

VirtualFree

CreateThread

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

GetVersion

RtlUnwind

InterlockedDecrement

InterlockedIncrement

TerminateProcess

TlsSetValue

TlsAlloc

TlsFree

SetLastError

TlsGetValue

CopyFileA

GetTempPathA

OpenThread

GetVersionExA

GetCurrentProcess

CloseHandle

Sleep

GetLastError

FlushFileBuffers

SetStdHandle

IsBadCodePtr

SetUnhandledExceptionFilter

GetOEMCP

GetACP

GetCPInfo

GetStringTypeW

GetStringTypeA

LCMapStringW

SetFilePointer

IsBadWritePtr

RaiseException

WriteFile

HeapCreate

HeapDestroy

GetEnvironmentVariableA

GetEnvironmentStringsW

GetEnvironmentStrings

FreeEnvironmentStringsW

FreeEnvironmentStringsA

GetStartupInfoA

GetFileType

GetStdHandle

SetHandleCount

GetACP

GetCPInfo

LCMapStringW

SetFilePointer

RaiseException

IsBadWritePtr

VirtualAlloc

VirtualFree

HeapDestroy

GetEnvironmentVariableA

GetEnvironmentStringsW

GetEnvironmentStrings

FreeEnvironmentStringsW

FreeEnvironmentStringsA

GetFileType

GetStdHandle

SetHandleCount

GetLastError

MultiByteToWideChar

WaitForSingleObject

VirtualFreeEx

lstrcpynA

FindClose

lstrcpyn

GetNativeSystemInfo

OpenProcess

GetModuleHandleA

CloseHandle

GetModuleFileNameA

GetCurrentProcess

TlsGetValue

SetLastError

TlsFree

TlsAlloc

TlsSetValue

TerminateProcess

InterlockedIncrement

GetOEMCP

RtlUnwind

GetVersion

CreateToolhelp32Snapshot

Process32First

Process32Next

DuplicateHandle

CopyFileA

VirtualAllocEx

WideCharToMultiByte

GetTempFileNameA

GetTempPathA

GetSystemDirectoryA

RtlMoveMemory

WriteProcessMemory

GetWindowsDirectoryA

lstrcpynW

CreateWaitableTimerA

SetWaitableTimer

Module32First

Module32Next

VirtualProtect

VirtualQuery

LoadLibraryExA

FreeLibrary

CreateRemoteThread

GetExitCodeThread

OpenThread

TerminateThread

LeaveCriticalSection

GetVersionExA

HeapCreate

ReadProcessMemory

VirtualQueryEx

CreateProcessA

PeekNamedPipe

lstrlenW

lstrcpyA

InitializeCriticalSection

GetStringTypeA

GetStringTypeW

SetUnhandledExceptionFilter

IsBadCodePtr

SetStdHandle

FlushFileBuffers

LoadLibraryA

InterlockedDecrement

GetCurrentThreadId

SetProcessAffinityMask

EnterCriticalSection

DeleteCriticalSection

RtlZeroMemory

IsWow64Process

HeapAlloc

HeapFree

lstrcmpW

lstrcmpiW

GetProcessHeap

ExitProcess

HeapReAlloc

IsBadReadPtr

ReadFile

GetFileSize

CreateFileA

DeleteFileA

WriteFile

GetTickCount

LCMapStringA

GetProcAddress

GetUserDefaultLCID

GetDiskFreeSpaceExA

GetCurrentDirectoryA

SetCurrentDirectoryA

GetStartupInfoA

FindNextFileA

FindFirstFileA

GetCommandLineA

PathFindFileNameA

PathFindFileNameA

StrToIntW

StrToIntExW

PathFindExtensionA

PathFileExistsA

StrToIntExA

PeekMessageA

GetMessageA

TranslateMessage

DispatchMessageA

wsprintfA

MessageBoxA

MsgWaitForMultipleObjects

CallWindowProcA

SetWindowLongA

GetWindowLongA

RegisterWindowMessageA

GetAncestor

GetWindowThreadProcessId

IsWindowVisible

GetParent

EnumWindows

PostThreadMessageA

MsgWaitForMultipleObjects

GetForegroundWindow

RegisterWindowMessageA

ClientToScreen

SendMessageA

WindowFromPoint

ShowWindow

EnumWindows

GetParent

GetAncestor

CallWindowProcA

PeekMessageA

TranslateMessage

DispatchMessageA

wsprintfA

GetMessageA

MessageBoxA

GetDlgItem

FindWindowA

GetCursorPos

GetClassNameA

GetWindowTextA

GetWindowThreadProcessId

IsWindowVisible

LookupPrivilegeValueA

AdjustTokenPrivileges

OpenProcessToken

OpenProcessToken

LookupPrivilegeValueA

AdjustTokenPrivileges

CryptHashData

CryptGetHashParam

RegCloseKey

RegQueryValueExA

RegOpenKeyA

WSAStartup

htons

WSACleanup

GetFileVersionInfoSizeA

VerQueryValueA

GetFileVersionInfoA

SHGetSpecialFolderPathA

CoCreateInstance

OleRun

CoInitialize

CLSIDFromString

CLSIDFromProgID

CoUninitialize

GetModuleInformation

VariantChangeType

VariantInit

SafeArrayAllocDescriptor

SafeArrayAllocData

VariantCopy

SafeArrayGetDim

SafeArrayGetLBound

SafeArrayGetUBound

SafeArrayAccessData

SafeArrayUnaccessData

SafeArrayGetElemsize

VarR8FromCy

VarR8FromBool

LoadTypeLi

LHashValOfNameSys

RegisterTypeLi

SafeArrayCreate

SysAllocString

VariantClear

SafeArrayDestroy

SysFreeString

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ