Import table
advapi32.dll
LookupAccountSidW, OpenProcessToken, GetTokenInformation, ConvertSidToStringSidW, RegNotifyChangeKeyValue, RegEnumValueW, RegEnumKeyExW, RegQueryInfoKeyW, RegSetValueExW, RegDeleteValueW, RegDeleteKeyW, RegCreateKeyExW, RegQueryValueExW, RegCloseKey, RegOpenKeyExW, OpenEventLogW, ReadEventLogW, CloseEventLog, GetUserNameW, CreateProcessAsUserW, GetSidSubAuthority, GetSidSubAuthorityCount, GetTraceEnableLevel, GetTraceEnableFlags, GetTraceLoggerHandle, UnregisterTraceGuids, TraceEvent, RegisterTraceGuidsW, GetLengthSid, SetSecurityDescriptorDacl, AddAccessAllowedAce, InitializeAcl, InitializeSecurityDescriptor, RegOpenKeyExA, RegQueryValueExA, CryptContextAddRef, CryptReleaseContext, CryptDestroyKey, CryptDestroyHash, CryptSignHashW, CryptSetHashParam, CryptGetHashParam, CryptCreateHash, CryptGetKeyParam, CryptGetUserKey, SetSecurityInfo, GetSecurityDescriptorSacl, ConvertStringSecurityDescriptorToSecurityDescriptorW, CryptAcquireContextW, CryptGenKey, LookupAccountNameW, RegEnumValueA, IsValidSid, CryptHashData, CryptExportKey, CryptDuplicateKey, CryptImportKey, RegOverridePredefKey, SetFileSecurityW, ConvertSecurityDescriptorToStringSecurityDescriptorW, GetFileSecurityW, CryptDecrypt, CryptEncrypt, CryptDeriveKey, CryptSetKeyParam, CryptGenRandom
comctl32.dll
ImageList_Destroy, ImageList_Create, ImageList_ReplaceIcon, InitCommonControlsEx
distribution.dll
GetDistributionData
dnsapi.dll
DnsQuery_A, DnsFree
gdi32.dll
EnumFontFamiliesExW, EnumFontFamiliesW, StretchBlt, SetRectRgn, CombineRgn, SetDIBitsToDevice, CreateBitmap, GetTextExtentPoint32W, CreateFontW, GetCharWidthI, GetCharABCWidthsW, GetFontUnicodeRanges, GetTextExtentPointI, SetTextAlign, GdiFlush, AddFontMemResourceEx, GetOutlineTextMetricsW, GetGlyphIndicesW, RemoveFontMemResourceEx, GetGlyphOutlineW, GetTextFaceW, StrokeAndFillPath, GetStretchBltMode, GdiAlphaBlend, ExtCreatePen, SetMiterLimit, GetTextColor, PathToRegion, SelectClipRgn, SetPolyFillMode, BeginPath, PolyBezier, AbortPath, EndPath, SetStretchBltMode, SetBrushOrgEx, SetArcDirection, SetDCBrushColor, SetDCPenColor, SetBkMode, SetROP2, SwapBuffers, ChoosePixelFormat, SetPixelFormat, GetDIBits, SetDIBits, GetICMProfileW, GetRegionData, StrokePath, SetViewportOrgEx, SetLayout, SetMapMode, SetTextColor, GetBkColor, GetRgnBox, CreateRectRgnIndirect, EqualRgn, ExcludeClipRect, CreateSolidBrush, CreateFontIndirectW, Rectangle, SetAbortProc, StartDocW, CreateDCW, EndDoc, CancelDC, StretchDIBits, ModifyWorldTransform, StartPage, SaveDC, RestoreDC, EndPage, GetEnhMetaFileHeader, GdiComment, GetEnhMetaFileBits, PlayEnhMetaFile, CloseEnhMetaFile, SetEnhMetaFileBits, GetEnhMetaFileW, CreateEnhMetaFileW, DeleteEnhMetaFile, ExtEscape, CreateDCA, SetGraphicsMode, GetStockObject, EnumEnhMetaFile, PlayEnhMetaFileRecord, GetWorldTransform, SetWorldTransform, GetFontData, GetCurrentObject, GetObjectW, PtInRegion, CreateRectRgn, GetTextMetricsW, GetDeviceCaps, CreateCompatibleBitmap, CreatePen, MoveToEx, LineTo, SetBkColor, ExtTextOutW, CreateCompatibleDC, CreateDIBSection, PatBlt, BitBlt, GetObjectType, SelectObject, DeleteObject, DeleteDC, CreatePolygonRgn, SetICMMode, RectInRegion, GetBitmapBits, CreateRoundRectRgn, RoundRect
kernel32.dll
DllMain
ole32.dll
RegisterDragDrop, RevokeDragDrop, CoTaskMemAlloc, CoTaskMemRealloc, GetHGlobalFromStream, CreateStreamOnHGlobal, CoInitializeEx, CoCreateGuid, OleDuplicateData, CoUninitialize, CoInitialize, CLSIDFromString, PropVariantClear, CoCreateInstance, ReleaseStgMedium, OleUninitialize, OleInitialize, CoSetProxyBlanket, DoDragDrop, StringFromGUID2, CoTaskMemFree
oleacc.dll
AccessibleObjectFromWindow, CreateStdAccessibleObject, LresultFromObject
psapi.dll
GetModuleFileNameExW, GetProcessMemoryInfo, QueryWorkingSet, GetMappedFileNameW, EnumProcessModules
rpcrt4.dll
UuidToStringW, RpcStringFreeW, UuidCreateSequential, UuidCreate
secur32.dll
AcquireCredentialsHandleW, InitializeSecurityContextW, QuerySecurityPackageInfoW, FreeCredentialsHandle, DeleteSecurityContext, FreeContextBuffer, EncryptMessage, DecryptMessage, CompleteAuthToken, AcquireCredentialsHandleA, InitializeSecurityContextA, ApplyControlToken, QueryCredentialsAttributesW, QueryContextAttributesW
shlwapi.dll
SHDeleteKeyW, PathRemoveExtensionW, PathFindExtensionW, UrlCreateFromPathA, PathIsUNCA, PathGetCharTypeW, SHStrDupW, PathFileExistsW, PathFileExistsA, PathFindFileNameW, UrlCreateFromPathW, PathIsUNCW, SHCopyKeyW, SHDeleteEmptyKeyW, SHGetValueA
user32.dll
DllMain
userenv.dll
DestroyEnvironmentBlock, CreateEnvironmentBlock, RegisterGPNotification, FreeGPOListW, LeaveCriticalPolicySection, EnterCriticalPolicySection, GetAppliedGPOListW
usp10.dll
ScriptXtoCP, ScriptCPtoX, ScriptStringAnalyse, ScriptGetFontProperties, ScriptJustify, ScriptLayout, ScriptPlace, ScriptStringOut, ScriptStringFree, ScriptFreeCache, ScriptShape, ScriptItemize
version.dll
GetFileVersionInfoSizeW, GetFileVersionInfoW, VerQueryValueW
winmm.dll
waveOutGetNumDevs, timeEndPeriod, waveInMessage, waveInPrepareHeader, waveInUnprepareHeader, waveInAddBuffer, waveInStart, waveInReset, waveInClose, waveInOpen, waveInGetDevCapsW, waveOutPrepareHeader, waveOutUnprepareHeader, waveOutReset, waveOutClose, waveOutWrite, waveOutOpen, waveOutRestart, waveOutPause, timeSetEvent, timeKillEvent, timeBeginPeriod, timeGetTime, waveInGetNumDevs
wintrust.dll
WTHelperGetProvSignerFromChain, WTHelperProvDataFromStateData, WinVerifyTrust, WTHelperGetProvCertFromChain
wtsapi32.dll
WTSFreeMemory, WTSQuerySessionInformationW, WTSRegisterSessionNotification, WTSUnRegisterSessionNotification, WTSQueryUserToken
Export table
_DelayedLowerToken@4
ChromeMain
RelaunchChromeBrowserWithNewCommandLineIfNeeded
