IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

ord147

ord74

ord145

GetFileVersionInfoW

VerQueryValueW

GetFileVersionInfoSizeW

GetModuleFileNameExW

GetProcessImageFileNameW

EnumProcessModules

WTSEnumerateSessionsW

WTSFreeMemory

PathIsFileSpecW

PathAddExtensionW

PathRemoveFileSpecA

PathIsDirectoryA

PathIsDirectoryEmptyW

PathIsSystemFolderW

PathIsRootW

PathRenameExtensionW

PathIsDirectoryW

PathAppendW

PathRemoveBackslashW

PathStripPathW

PathAppendA

PathFileExistsW

PathFindFileNameW

PathRemoveFileSpecW

PathFileExistsA

PathRemoveExtensionW

ShellExecuteExW

SHCreateDirectoryExW

SHGetFolderLocation

SHGetSpecialFolderPathW

SHGetKnownFolderPath

SHGetPathFromIDListW

SHGetFolderPathW

ord680

CommandLineToArgvW

ord51

SHCreateItemFromParsingName

WinHttpOpen

WinHttpReceiveResponse

WinHttpSetTimeouts

WinHttpQueryHeaders

WinHttpQueryAuthSchemes

WinHttpGetProxyForUrl

WinHttpGetIEProxyConfigForCurrentUser

WinHttpSetCredentials

WinHttpSendRequest

WinHttpOpenRequest

WinHttpCloseHandle

WinHttpConnect

WinHttpReadData

WinHttpQueryDataAvailable

WinHttpSetOption

TlsFree

TlsSetValue

TlsGetValue

CompareStringW

SwitchToThread

InitializeCriticalSectionAndSpinCount

GetStringTypeW

EncodePointer

TlsAlloc

GetLocaleInfoW

GetCPInfo

IsDebuggerPresent

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsProcessorFeaturePresent

InitializeSListHead

GetStartupInfoW

RtlUnwind

InterlockedPushEntrySList

InterlockedFlushSList

LoadLibraryExW

ExitThread

FreeLibraryAndExitThread

GetModuleHandleExW

GetTimeZoneInformation

ExitProcess

GetStdHandle

GetFileType

IsValidLocale

EnumSystemLocalesW

GetConsoleMode

ReadConsoleW

GetConsoleCP

FindFirstFileExW

IsValidCodePage

GetOEMCP

GetCommandLineA

GetEnvironmentStringsW

FreeEnvironmentStringsW

InitializeCriticalSectionEx

GetLastError

RaiseException

DecodePointer

DeleteCriticalSection

ReleaseSemaphore

CreateMutexW

WaitForSingleObject

LocalAlloc

ReleaseMutex

Sleep

OpenSemaphoreW

CloseHandle

LocalFree

GetCurrentProcessId

CreateSemaphoreW

CreateDirectoryW

GetTempPathW

MultiByteToWideChar

SetEvent

ResetEvent

GetCommandLineW

CreateProcessW

GetLocalTime

GetTimeFormatW

GetDateFormatW

OpenProcess

CreateToolhelp32Snapshot

Process32NextW

Process32FirstW

FindFirstFileW

FindNextFileW

TerminateProcess

RemoveDirectoryW

FindClose

SetEnvironmentVariableW

SetFileAttributesW

CreateEventW

GetDiskFreeSpaceExW

CreateThread

CopyFileW

lstrcmpiW

lstrcmpW

GetExitCodeProcess

AreFileApisANSI

ReadFile

TryEnterCriticalSection

HeapCreate

HeapFree

EnterCriticalSection

GetFullPathNameW

WriteFile

GetDiskFreeSpaceW

OutputDebugStringA

LockFile

LeaveCriticalSection

InitializeCriticalSection

SetFilePointer

GetFullPathNameA

SetEndOfFile

UnlockFileEx

CreateFileW

GetFileAttributesW

GetCurrentThreadId

UnmapViewOfFile

HeapValidate

HeapSize

GetTempPathA

FormatMessageW

GetDiskFreeSpaceA

GetFileAttributesA

GetFileAttributesExW

OutputDebugStringW

FlushViewOfFile

CreateFileA

LoadLibraryA

WaitForSingleObjectEx

GetVersionExA

DeleteFileA

DeleteFileW

HeapReAlloc

GetSystemInfo

LoadLibraryW

HeapAlloc

HeapCompact

HeapDestroy

UnlockFile

GetProcAddress

CreateFileMappingA

LockFileEx

GetFileSize

GetProcessHeap

SystemTimeToFileTime

FreeLibrary

WideCharToMultiByte

GetSystemTimeAsFileTime

GetSystemTime

FormatMessageA

MapViewOfFile

QueryPerformanceCounter

GetTickCount

FlushFileBuffers

GetCurrentProcess

GetFileSizeEx

lstrlenW

GetACP

SizeofResource

GetModuleFileNameW

LockResource

LoadResource

FindResourceW

MoveFileExW

GlobalAlloc

GlobalFree

VerSetConditionMask

GetModuleHandleW

VerifyVersionInfoW

SetLastError

DuplicateHandle

ProcessIdToSessionId

TerminateThread

FindResourceExW

lstrcpyW

QueryFullProcessImageNameW

SetFileTime

LocalFileTimeToFileTime

DosDateTimeToFileTime

GetFileTime

FileTimeToSystemTime

OpenMutexW

GetUserDefaultLCID

LCMapStringW

GetUserDefaultLangID

GetUserDefaultUILanguage

SetFilePointerEx

ResumeThread

SetStdHandle

WriteConsoleW

QueryPerformanceFrequency

GetVersionExW

CreateFileMappingW

wsprintfW

EnumWindows

GetWindowThreadProcessId

GetShellWindow

InitializeSecurityDescriptor

SetEntriesInAclW

AllocateAndInitializeSid

SetSecurityDescriptorDacl

RegQueryValueExW

FreeSid

RegDeleteValueW

RegOpenKeyExW

RegSetValueExW

RegCreateKeyExW

RegDeleteKeyExW

RegCloseKey

OpenProcessToken

AdjustTokenPrivileges

LookupPrivilegeValueW

GetNamedSecurityInfoW

SetNamedSecurityInfoW

LookupAccountSidW

CreateWellKnownSid

EqualSid

GetTokenInformation

DuplicateTokenEx

GetUserNameW

ConvertSidToStringSidW

ImpersonateLoggedOnUser

ConvertStringSidToSidW

RevertToSelf

CryptReleaseContext

CryptGetHashParam

CryptDestroyHash

CryptHashData

CryptCreateHash

CryptAcquireContextW

CoUninitialize

CoCreateInstance

CoInitializeEx

CoTaskMemFree

CoInitialize

CoCreateGuid

StringFromGUID2

CLSIDFromProgID

OleRun

CLSIDFromString

SysStringLen

VariantChangeType

VariantInit

SysFreeString

SysAllocString

VariantClear

VariantCopy

GetErrorInfo

CertGetNameStringW

WinVerifyTrust

WTHelperGetProvCertFromChain

WTHelperProvDataFromStateData

WTHelperGetProvSignerFromChain

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ