Import table
advapi32.dll
GetLengthSid, LookupPrivilegeValueW, AdjustTokenPrivileges, LogonUserW, CreateProcessAsUserW, LookupAccountSidA, RegEnumKeyExA, OpenThreadToken, GetUserNameA, AddAccessAllowedAce, AddAccessAllowedAceEx, SetSecurityInfo, DeleteAce, GetSecurityDescriptorDacl, GetAclInformation, InitializeAcl, GetAce, AddAce, RegCreateKeyExA, RegQueryValueExA, CopySid, RegOpenKeyExA, RegCloseKey, GetTokenInformation, LookupAccountSidW, EqualSid, FreeSid, OpenProcessToken, AllocateAndInitializeSid
kernel32.dll
DllMain
ole32.dll
CLSIDFromProgID, CoRegisterClassObject, CoInitializeEx, CoInitialize, CoRevokeClassObject, CoGetClassObject, CoUninitialize, CoTaskMemFree, CoCreateInstance
psapi.dll
GetModuleFileNameExW, EnumProcessModules, EnumProcesses
shell32.dll
ShellExecuteExA, SHGetDesktopFolder, SHGetMalloc, SHGetPathFromIDListW
user32.dll
CloseDesktop, CloseWindowStation, OpenInputDesktop, SetProcessWindowStation, OpenWindowStationA, GetProcessWindowStation, EnumWindowStationsA, DispatchMessageA, TranslateMessage, PostQuitMessage, PeekMessageA, MsgWaitForMultipleObjects, GetThreadDesktop, LoadCursorA, GetUserObjectSecurity, SetCursor, SetThreadDesktop, IsChild, GetWindowThreadProcessId, EnumDesktopWindows, CharNextExA
vdmdbg.dll
VDMEnumTaskWOWEx
version.dll
VerQueryValueA, GetFileVersionInfoA, GetFileVersionInfoSizeA
