IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

EventWrite

CryptDecrypt

CryptGetKeyParam

CryptSetKeyParam

CryptImportKey

CryptDestroyKey

CryptExportKey

CryptGetUserKey

CryptDeriveKey

CryptHashData

CryptCreateHash

CryptDestroyHash

CryptAcquireContextW

CryptReleaseContext

RegQueryValueExW

RegOpenKeyExW

RegCloseKey

RegSetKeySecurity

RegCreateKeyExW

ConvertStringSecurityDescriptorToSecurityDescriptorW

EventRegister

EventUnregister

RegDeleteValueW

RegEnumValueW

RegQueryInfoKeyW

RegSetValueExW

CryptGenRandom

OpenProcessToken

LookupPrivilegeValueW

AdjustTokenPrivileges

DuplicateTokenEx

CreateProcessAsUserW

InitiateSystemShutdownExW

AllocateAndInitializeSid

FreeSid

CheckTokenMembership

OpenThreadToken

GetTokenInformation

EqualSid

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

InitializeAcl

AddAccessAllowedAce

GetLengthSid

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

GetOverlappedResult

UnlockFileEx

LockFileEx

GetSystemDefaultUILanguage

OpenEventW

SetEvent

DecodePointer

WaitForMultipleObjects

ProcessIdToSessionId

GetCurrentProcessId

RaiseException

MultiByteToWideChar

LocalAlloc

GetVersionExA

WideCharToMultiByte

SetFilePointer

FindClose

FindFirstFileW

FindNextFileW

GlobalFree

VerifyVersionInfoW

VerSetConditionMask

GetCurrentProcess

SetLastError

EncodePointer

HeapSize

HeapDestroy

HeapReAlloc

DeleteFileW

GetTickCount

GetSystemTimeAsFileTime

GetCurrentThreadId

QueryPerformanceCounter

GetModuleHandleA

GetFileSizeEx

DeleteFileA

DebugBreak

GetVersion

CreateMutexA

LoadLibraryExA

GetModuleFileNameA

GetSystemInfo

CreateFileMappingA

ExpandEnvironmentStringsA

InitializeCriticalSectionAndSpinCount

TerminateProcess

SetUnhandledExceptionFilter

CreateFileA

TlsFree

GetWindowsDirectoryW

TlsAlloc

CreateFileMappingW

GetLocalTime

TlsSetValue

InitializeCriticalSection

UnmapViewOfFile

MapViewOfFile

TlsGetValue

GetTempFileNameW

ExitProcess

GetSystemTime

IsDebuggerPresent

CreateEventW

GetExitCodeThread

lstrcmpW

GetTimeZoneInformation

GetPriorityClass

WriteFile

OutputDebugStringW

SetFilePointerEx

SystemTimeToTzSpecificLocalTime

SetEndOfFile

VirtualQuery

SetPriorityClass

UnhandledExceptionFilter

GetStartupInfoW

Sleep

GetModuleFileNameW

ExpandEnvironmentStringsW

GetFileAttributesW

GetUserDefaultLocaleName

GetUserDefaultUILanguage

DeviceIoControl

FlushFileBuffers

GetTempPathW

GetFullPathNameW

CreateThread

ResetEvent

FormatMessageW

GetUserGeoID

GetGeoInfoW

CreateMutexW

WaitForSingleObject

LocalFree

CreateFileW

GetCurrentThread

CreateDirectoryW

GetFileSize

ReadFile

GetLastError

GetModuleHandleW

LoadLibraryExW

CompareStringW

ReleaseMutex

CloseHandle

GetProcAddress

GetProcessHeap

GetModuleHandleExW

HeapFree

HeapAlloc

OutputDebugStringA

FreeLibrary

__CxxFrameHandler3

_CxxThrowException

memmove

_vsnwprintf

wcschr

_ftime64_s

free

_XcptFilter

__p__commode

_amsg_exit

__wgetmainargs

__set_app_type

exit

_exit

_cexit

__p__fmode

__setusermatherr

_initterm

_wcmdln

_lock

towlower

fclose

wcstok_s

_except_handler4_common

_controlfp

?terminate@@YAXXZ

realloc

_errno

??1type_info@@UAE@XZ

_onexit

__dllonexit

_unlock

_wcsicmp

bsearch

wcstoul

_wcsnicmp

_purecall

iswspace

_vscwprintf

_vsnprintf

wcsrchr

memcpy

memset

memcmp

_wcstoui64

iswctype

feof

_wtoi

_wfopen

fgetws

swscanf_s

_ftol2

CoCreateInstance

StringFromGUID2

CoCreateGuid

CoUninitialize

CoInitializeEx

CoTaskMemFree

SysAllocStringLen

SysAllocString

SysFreeString

VariantTimeToSystemTime

VariantClear

VariantInit

SystemTimeToVariantTime

NtYieldExecution

RtlDowncaseUnicodeChar

RtlGetVersion

RtlAdjustPrivilege

RtlEnterCriticalSection

NtWriteFile

RtlFreeHeap

RtlInitUnicodeString

NtWaitForSingleObject

NtCreateFile

RtlNtStatusToDosError

NtClose

RtlReAllocateHeap

RtlAllocateHeap

NtShutdownSystem

NtSetInformationThread

NtSetInformationProcess

RtlDeleteCriticalSection

RtlLeaveCriticalSection

RtlInitializeCriticalSection

RtlDosPathNameToNtPathName_U

DbgPrintEx

RtlRaiseStatus

WTHelperProvDataFromStateData

WTHelperGetProvSignerFromChain

CryptCATAdminCalcHashFromFileHandle

WinVerifyTrust

UnregisterClassA

SLGetWindowsInformation

SetupIterateCabinetW

WinHttpCrackUrl

WinHttpReceiveResponse

WinHttpSendRequest

WinHttpOpenRequest

WinHttpAddRequestHeaders

WinHttpReadData

WinHttpQueryDataAvailable

WinHttpQueryHeaders

WinHttpSetOption

WinHttpGetProxyForUrl

WinHttpGetIEProxyConfigForCurrentUser

WinHttpConnect

WinHttpOpen

WinHttpCloseHandle

UuidToStringW

UuidCreate

I_RpcMapWin32Status

UuidFromStringW

RpcStringFreeW

CertVerifyCertificateChainPolicy

DestroyEnvironmentBlock

CreateEnvironmentBlock

WTSFreeMemory

WTSQueryUserToken

WTSEnumerateSessionsW

NetGetJoinInformation

NetApiBufferFree

PathStripPathW

PathCombineW

PathRemoveFileSpecW

StrStrIW

ord615

SHFileOperationW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE