Import table
advapi32.dll
ConvertSidToStringSidW, ImpersonateLoggedOnUser, GetTokenInformation, ControlService, StartServiceW, RegQueryValueExW, RegOpenKeyExW, RegCloseKey, RegCreateKeyExW, OpenProcessToken, GetUserNameW, RegOpenCurrentUser, RegEnumKeyExW, RegSetValueExW, OpenServiceW, OpenSCManagerW, DeleteService, CloseServiceHandle, CreateServiceW, CryptHashData, CryptDestroyHash, CryptDecrypt, CryptDestroyKey, CryptCreateHash, CryptEncrypt, CryptGenRandom, CryptDeriveKey, CryptAcquireContextW, CryptGetHashParam, FreeSid, SetEntriesInAclW, AllocateAndInitializeSid, SetNamedSecurityInfoW, RegEnumKeyW, RegEnumValueW, RegQueryInfoKeyW, IsTextUnicode, AdjustTokenPrivileges, LookupPrivilegeValueW, RevertToSelf
kernel32.dll
CompareFileTime, GetSystemTimeAsFileTime, GetFileTime, InterlockedIncrement, InterlockedDecrement, InterlockedCompareExchange, InterlockedExchange, GetStringTypeW, Sleep, GetCurrentThreadId, GetCommandLineA, HeapFree, HeapReAlloc, RaiseException, GetCPInfo, RtlUnwind, HeapAlloc, LCMapStringW, CompareStringW, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, IsProcessorFeaturePresent, TlsAlloc, TlsGetValue, TlsSetValue, TlsFree, SetLastError, ExitProcess, SetHandleCount, GetWindowsDirectoryW, InitializeCriticalSectionAndSpinCount, GetFileType, GetStartupInfoW, GetModuleFileNameA, FreeEnvironmentStringsW, GetEnvironmentStringsW, HeapCreate, HeapDestroy, QueryPerformanceCounter, GetCurrentProcessId, WriteFile, GetModuleFileNameW, GetLocaleInfoW, GetACP, GetOEMCP, IsValidCodePage, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, HeapSize, GetTickCount, SetFilePointer, GetConsoleCP, GetConsoleMode, FreeLibrary, LoadLibraryW, SetStdHandle, WriteConsoleW, ReadFile, DeviceIoControl, SizeofResource, LoadResource, FindResourceW, CreateDirectoryW, GetVolumeInformationW, GetSystemInfo, GetVersionExW, GetTempPathW, GetComputerNameW, FindNextFileW, FindClose, GetProcAddress, GetModuleHandleW, GetSystemWindowsDirectoryW, GetCurrentProcess, FindFirstFileW, CopyFileW, MoveFileExW, GetLongPathNameW, DeleteCriticalSection, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, BackupRead, FlushFileBuffers, BackupSeek, SetThreadExecutionState, SetFileAttributesW, DeleteFileW, CloseHandle, RemoveDirectoryW, CreateFileW, GetFileAttributesW, GetSystemDirectoryW, GetSystemTime, MultiByteToWideChar, WideCharToMultiByte, LockResource, GetFileAttributesExW, SetEnvironmentVariableA, ExpandEnvironmentStringsW, GetLastError, GetStdHandle, OutputDebugStringW, GetDateFormatW, SystemTimeToFileTime, GetTimeFormatW, FileTimeToSystemTime, GetTimeZoneInformation, FileTimeToLocalFileTime, CreateProcessW, WaitForSingleObject, OpenProcess, Process32FirstW, Module32FirstW, Process32NextW, CreateToolhelp32Snapshot, Module32NextW, LocalFree, GetFileSizeEx, GetShortPathNameW
mpr.dll
WNetGetConnectionW
ole32.dll
PropVariantClear
psapi.dll
GetModuleFileNameExW
shell32.dll
SHGetFolderPathW, SHFileOperationW, CommandLineToArgvW
shlwapi.dll
SHDeleteValueW, PathFileExistsW, SHRegGetPathW, SHSetValueW, SHDeleteKeyW, SHCopyKeyW
user32.dll
GetSystemMetrics, CharUpperA, CharUpperW, CharLowerW
userenv.dll
GetUserProfileDirectoryW, ExpandEnvironmentStringsForUserW, GetProfilesDirectoryW, GetDefaultUserProfileDirectoryW
version.dll
VerQueryValueW, GetFileVersionInfoSizeW, GetFileVersionInfoW
wintrust.dll
WinVerifyTrust
wtsapi32.dll
WTSEnumerateSessionsW, WTSFreeMemory
Export table
_SDKCache@8
_SDKCacheClear@4
_SDKCacheCreate@0
_SDKCacheDestroy@4
_SDKCacheEnumerate@12
_SDKCacheLookup@12
_SDKCreate@12
_SDKDatabaseGetDate@8
_SDKDatabaseGetFingerprintCount@0
_SDKDatabaseGetVersion@4
_SDKDatabaseLoad@4
_SDKDestroy@0
_SDKExclusionsAdd@4
_SDKExclusionsClear@0
_SDKExclusionsEnumerate@8
_SDKExclusionsIsExcluded@4
_SDKExclusionsMigrate@8
_SDKExclusionsRead@4
_SDKExclusionsRemove@4
_SDKExclusionsWrite@4
_SDKIsIDBlacklisted@4
_SDKLanguageEnumerate@8
_SDKLanguageGetName@12
_SDKLanguageGetString@12
_SDKLanguageGetStringA@12
_SDKLanguageGetStringW@12
_SDKLanguageSet@4
_SDKLanguageSetPath@4
_SDKLogAdd@8
_SDKLogClear@0
_SDKLogEnumerate@8
_SDKLogSetFile@4
_SDKLogSetFormat@4
_SDKLogSetHeader@4
_SDKLogSetLanguage@4
_SDKLogSetPath@4
_SDKLogWrite@4
_SDKQuarantine@4
_SDKQuarantineDelete@4
_SDKQuarantineDeleteAll@0
_SDKQuarantineEnumerate@8
_SDKQuarantineRestore@4
_SDKQuarantineRestoreAll@0
_SDKQuarantineRestoreTo@8
_SDKQuarantineSetPath@4
_SDKRemovalExecute@4
_SDKRemovalQueue@4
_SDKRemove@8
_SDKScan@4
_SDKSessionSetHeader@4
ProcessCleanupScriptW
SDKCache
SDKCacheClear
SDKCacheCreate
SDKCacheDestroy
SDKCacheEnumerate
SDKCacheLookup
SDKCreate
SDKDatabaseGetDate
SDKDatabaseGetFingerprintCount
SDKDatabaseGetVersion
SDKDatabaseLoad
SDKDestroy
SDKExclusionsAdd
SDKExclusionsClear
SDKExclusionsEnumerate
SDKExclusionsIsExcluded
SDKExclusionsMigrate
SDKExclusionsRead
SDKExclusionsRemove
SDKExclusionsWrite
SDKIsIDBlacklisted
SDKLanguageEnumerate
SDKLanguageGetName
SDKLanguageGetString
SDKLanguageGetStringA
SDKLanguageGetStringW
SDKLanguageSet
SDKLanguageSetPath
SDKLogAdd
SDKLogClear
SDKLogEnumerate
SDKLogSetFile
SDKLogSetFormat
SDKLogSetHeader
SDKLogSetLanguage
SDKLogSetPath
SDKLogWrite
SDKQuarantine
SDKQuarantineDelete
SDKQuarantineDeleteAll
SDKQuarantineEnumerate
SDKQuarantineRestore
SDKQuarantineRestoreAll
SDKQuarantineRestoreTo
SDKQuarantineSetPath
SDKRemovalExecute
SDKRemovalQueue
SDKRemove
SDKScan
SDKSessionSetHeader
