IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

ProcessPrng

WaitOnAddress

WakeByAddressAll

WakeByAddressSingle

RtlUnwindEx

RtlPcToFileHeader

NtDeviceIoControlFile

RtlNtStatusToDosError

NtCancelIoFileEx

NtCreateFile

NtWriteFile

NtReadFile

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

NtQuerySystemInformation

NtQueryInformationProcess

RtlGetVersion

CredReadW

CryptEnumProvidersW

CryptSignHashW

CryptDestroyHash

CryptCreateHash

CryptDecrypt

CryptExportKey

CryptGetUserKey

CryptGetProvParam

CryptSetHashParam

CryptDestroyKey

CryptReleaseContext

CryptAcquireContextW

ReportEventW

RegisterEventSourceW

DeregisterEventSource

RegEnumValueW

RegCloseKey

GetTokenInformation

RegOpenKeyExW

RegEnumKeyExW

SystemFunction036

RegQueryValueExW

RegSetValueExW

RegCreateKeyExW

RegDeleteValueW

CredWriteW

LookupAccountSidW

CredFree

CredDeleteW

IsValidSid

GetLengthSid

CopySid

OpenProcessToken

GetProcessWindowStation

GetUserObjectInformationW

GetSystemMetrics

MessageBoxW

CertGetCertificateChain

CertDuplicateCertificateChain

CertFreeCertificateChain

CertDuplicateCertificateContext

CertFreeCertificateContext

CertEnumCertificatesInStore

CertDuplicateStore

CertCloseStore

CertAddCertificateContextToStore

CertGetCertificateContextProperty

CertVerifyCertificateChainPolicy

CertOpenStore

CertFindCertificateInStore

getservbyname

WSASetLastError

getservbyport

connect

WSASocketW

getaddrinfo

inet_ntoa

inet_addr

htons

ntohs

htonl

freeaddrinfo

WSAStartup

gethostbyaddr

getsockname

recv

send

getpeername

WSASend

gethostbyname

select

WSAIoctl

socket

getsockopt

setsockopt

ioctlsocket

closesocket

listen

bind

WSAGetLastError

shutdown

WSACleanup

accept

GetAdaptersAddresses

GetIfTable2

GetIfEntry2

FreeMibTable

EnterCriticalSection

RaiseException

FindFirstFileExW

IsValidCodePage

GetOEMCP

GetCPInfo

SetEnvironmentVariableW

GetStringTypeW

GetTimeZoneInformation

HeapSize

LeaveCriticalSection

SetEndOfFile

GetStartupInfoW

IsDebuggerPresent

InitializeSListHead

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

GetCommandLineA

FlushFileBuffers

GetConsoleOutputCP

GetFileSizeEx

SetStdHandle

FlsAlloc

FlsGetValue

FlsSetValue

FlsFree

CompareStringW

LCMapStringW

SystemTimeToFileTime

GetSystemTime

LoadLibraryW

ReadConsoleA

GetACP

FormatMessageA

FreeLibrary

DeleteCriticalSection

InitializeCriticalSectionAndSpinCount

LoadLibraryExW

EncodePointer

GetCommandLineW

HeapFree

CloseHandle

SwitchToThread

QueryPerformanceCounter

GetLastError

GetSystemTimePreciseAsFileTime

CreateFileW

SetNamedPipeHandleState

CreateNamedPipeW

HeapReAlloc

UnlockFileEx

SetFileInformationByHandle

GetCurrentProcessId

SetFilePointerEx

VirtualUnlock

PostQueuedCompletionStatus

PowerClearRequest

VirtualLock

WaitForSingleObject

GetExitCodeProcess

GetSystemInfo

PowerCreateRequest

lstrlenW

AddVectoredExceptionHandler

SetThreadStackGuarantee

GetCurrentThread

GetStdHandle

GetConsoleMode

SetConsoleMode

SetConsoleTextAttribute

GetConsoleScreenBufferInfo

GetTimeZoneInformationForYear

FindClose

CopyFileExW

GetProcessId

GetEnvironmentStringsW

FreeEnvironmentStringsW

PowerSetRequest

FillConsoleOutputCharacterA

FillConsoleOutputAttribute

SetConsoleCursorPosition

CreateMutexA

LockFileEx

GetFileInformationByHandleEx

ReadConsoleInputW

GetNumberOfConsoleInputEvents

GetConsoleCursorInfo

SetConsoleCursorInfo

SetFileTime

GetComputerNameExW

GetQueuedCompletionStatusEx

SetLastError

GetFinalPathNameByHandleW

ConnectNamedPipe

ReadFile

GetOverlappedResult

WriteFile

CancelIoEx

CreateIoCompletionPort

SetFileCompletionNotificationModes

Sleep

GetModuleHandleA

GetProcAddress

MultiByteToWideChar

WriteConsoleW

QueryPerformanceFrequency

GetModuleHandleW

FormatMessageW

GetCurrentDirectoryW

GetEnvironmentVariableW

GetTempPathW

GetModuleFileNameW

GetSystemDirectoryA

GetFileInformationByHandle

GetFullPathNameW

FindNextFileW

CreateDirectoryW

FindFirstFileW

WideCharToMultiByte

ReadConsoleW

SetHandleInformation

CompareStringOrdinal

GetSystemDirectoryW

GetWindowsDirectoryW

CreateProcessW

GetFileAttributesW

GetCurrentProcess

DuplicateHandle

InitializeProcThreadAttributeList

UpdateProcThreadAttribute

DeleteProcThreadAttributeList

CreateThread

ReadFileEx

SleepEx

WriteFileEx

WaitForMultipleObjects

CreateEventW

CancelIo

ExitProcess

TerminateProcess

HeapAlloc

GetProcessHeap

WaitForSingleObjectEx

LoadLibraryA

ReleaseMutex

DeleteFileW

MoveFileExW

CreateSymbolicLinkW

CreateHardLinkW

SetFileAttributesW

GetFileType

GetTickCount64

GlobalMemoryStatusEx

GetLogicalDrives

GetDiskFreeSpaceExW

GetDriveTypeW

GetVolumeInformationW

DeviceIoControl

GetProcessTimes

OpenProcess

ReadProcessMemory

VirtualQueryEx

GetSystemTimes

GetProcessIoCounters

LocalFree

LocalAlloc

RegisterWaitForSingleObject

UnregisterWaitEx

SetConsoleCtrlHandler

GetNativeSystemInfo

InitializeSRWLock

ReleaseSRWLockExclusive

ReleaseSRWLockShared

AcquireSRWLockExclusive

AcquireSRWLockShared

GetCurrentThreadId

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetModuleHandleExW

GetSystemTimeAsFileTime

VirtualFree

PeekNamedPipe

NetUserEnum

NetApiBufferFree

NetUserGetLocalGroups

NetUserGetInfo

CoUninitialize

CoInitializeEx

CoInitializeSecurity

CoCreateInstance

CoSetProxyBlanket

CoTaskMemFree

VariantClear

SysAllocString

SysFreeString

PdhCollectQueryData

PdhOpenQueryA

PdhAddEnglishCounterW

PdhGetFormattedCounterValue

PdhRemoveCounter

PdhCloseQuery

CallNtPowerInformation

GetProcessMemoryInfo

GetModuleFileNameExW

GetPerformanceInfo

LsaFreeReturnBuffer

LsaGetLogonSessionData

LsaEnumerateLogonSessions

AcquireCredentialsHandleA

ApplyControlToken

FreeCredentialsHandle

DecryptMessage

InitializeSecurityContextW

AcceptSecurityContext

EncryptMessage

DeleteSecurityContext

FreeContextBuffer

QueryContextAttributesW

CommandLineToArgvW

SHGetKnownFolderPath

BCryptGenRandom

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ