IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

QueryPerformanceFrequency

CheckRemoteDebuggerPresent

SetThreadExecutionState

SetFilePointerEx

AddVectoredExceptionHandler

SetThreadStackGuarantee

GetCurrentThread

SwitchToThread

GetSystemInfo

GetStdHandle

GetConsoleMode

MultiByteToWideChar

WriteConsoleW

GetModuleHandleA

GetProcAddress

SetLastError

CreateWaitableTimerExW

SetWaitableTimer

Sleep

GetEnvironmentVariableW

GetModuleFileNameW

CreateFileW

SetFileInformationByHandle

GetFileInformationByHandle

GetFileInformationByHandleEx

GetFullPathNameW

CreateDirectoryW

FindFirstFileW

FindClose

IsDebuggerPresent

GetEnvironmentStringsW

FreeEnvironmentStringsW

CompareStringOrdinal

GetExitCodeProcess

GetWindowsDirectoryW

CreateProcessW

GetFileAttributesW

DuplicateHandle

InitializeProcThreadAttributeList

UpdateProcThreadAttribute

DeleteProcThreadAttributeList

GetCurrentProcessId

CreateNamedPipeW

CreateThread

ReadFileEx

SleepEx

WriteFileEx

ExitProcess

GetSystemTimePreciseAsFileTime

GetProcessTimes

OpenProcess

GetSystemTimes

GetProcessIoCounters

ReadProcessMemory

VirtualQueryEx

LocalFree

GlobalMemoryStatusEx

K32GetPerformanceInfo

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

InitializeSListHead

GetSystemTimeAsFileTime

GetCurrentThreadId

QueryPerformanceCounter

WaitForSingleObject

GetCurrentProcess

GetTickCount64

GetComputerNameExW

GetLastError

CloseHandle

HeapAlloc

GetProcessHeap

HeapReAlloc

GetSystemDirectoryW

HeapFree

GetModuleHandleW

ProcessPrng

WakeByAddressAll

WaitOnAddress

WakeByAddressSingle

NtQueryInformationProcess

NtWriteFile

RtlNtStatusToDosError

RtlGetVersion

NtQuerySystemInformation

IsValidSid

RegOpenKeyExW

RegQueryValueExW

RegCreateKeyExW

GetTokenInformation

OpenProcessToken

RegSetValueExW

SystemFunction036

GetLengthSid

CopySid

RegCloseKey

SysStringLen

SysAllocStringLen

SafeArrayDestroy

VariantClear

SysFreeString

SafeArrayAccessData

GetErrorInfo

SafeArrayUnaccessData

VariantToPropVariant

PropVariantToBSTR

PropVariantClear

CoCreateInstance

CoInitializeEx

CoInitializeSecurity

CoSetProxyBlanket

PdhOpenQueryA

PdhCollectQueryData

PdhAddEnglishCounterW

PdhGetFormattedCounterValue

PdhRemoveCounter

PdhCloseQuery

BCryptGenRandom

ShellExecuteExW

CommandLineToArgvW

GetModuleFileNameExW

CallNtPowerInformation

memcmp

__current_exception_context

__current_exception

__C_specific_handler

memset

memmove

memcpy

wcslen

_get_initial_narrow_environment

exit

_initterm_e

_exit

_initterm

_initialize_narrow_environment

_seh_filter_exe

__p___argc

terminate

_crt_atexit

__p___argv

_register_onexit_function

_initialize_onexit_table

_cexit

_set_app_type

_configure_narrow_argv

_register_thread_local_exe_atexit_callback

_c_exit

__setusermatherr

_set_fmode

__p__commode

_configthreadlocale

_set_new_mode

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ