Import table
advapi32.dll
GetKernelObjectSecurity, SetKernelObjectSecurity, GetSecurityDescriptorDacl, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, IsValidSid, GetSidIdentifierAuthority, GetSidSubAuthorityCount, GetSidSubAuthority, AllocateAndInitializeSid, EqualSid, FreeSid, RegOpenKeyA, RegQueryValueExA, DuplicateToken, SetThreadToken, RegDeleteValueW, RegDeleteKeyW, RegEnumValueW, RegCreateKeyExW, ControlService, QueryServiceStatus, DeleteService, StartServiceCtrlDispatcherW, CreateServiceW, RegisterServiceCtrlHandlerW, SetServiceStatus, OpenSCManagerW, OpenServiceW, CloseServiceHandle, StartServiceW, DuplicateTokenEx, CreateProcessAsUserW, OpenThreadToken, OpenProcessToken, GetTokenInformation, LookupAccountSidW, RegOpenKeyExW, RegQueryValueExW, RegSetValueExW, RegQueryInfoKeyW, RegEnumKeyExW, RevertToSelf, RegEnumKeyW, RegCloseKey, LookupPrivilegeValueW
kernel32.dll
GetDriveTypeW, DeviceIoControl, GetLogicalDrives, MoveFileW, DeleteFileW, GetTempFileNameW, GetModuleFileNameW, Sleep, GetVersionExA, GetTimeFormatA, GetDateFormatA, GetModuleHandleW, SetFileAttributesW, CreateDirectoryW, CopyFileW, WritePrivateProfileSectionW, GetPrivateProfileSectionW, MoveFileExW, GetFileAttributesW, GetACP, GetComputerNameA, SetEndOfFile, SetLastError, QueryDosDeviceW, HeapFree, HeapAlloc, GetProcessHeap, GetCurrentProcess, GetLocaleInfoW, GetModuleHandleA, LocalFree, lstrlenA, lstrcmpA, LocalAlloc, lstrlenW, FlushFileBuffers, GetFileTime, GetTempPathW, ReadProcessMemory, UnmapViewOfFile, CreateMutexW, ReleaseMutex, VirtualAlloc, MapViewOfFile, CreateFileMappingW, OpenFileMappingW, DuplicateHandle, OpenMutexW, SetThreadPriority, MultiByteToWideChar, InterlockedExchange, VirtualFree, WritePrivateProfileStringW, GetPrivateProfileStringW, WideCharToMultiByte, GetDiskFreeSpaceW, CompareStringW, CompareStringA, LoadLibraryA, GetOEMCP, GetExitCodeProcess, CreateFileA, SetStdHandle, GetStringTypeW, GetStringTypeA, GetCPInfo, IsBadCodePtr, IsBadReadPtr, SetUnhandledExceptionFilter, GetFileType, GetStdHandle, GetWindowsDirectoryW, FileTimeToLocalFileTime, FileTimeToSystemTime, GetVersion, GetLocaleInfoA, WaitForMultipleObjects, GetShortPathNameW, CreateProcessW, GetSystemTime, SystemTimeToFileTime, GetLocalTime, CreateThread, GetCurrentThread, OpenProcess, GetVersionExW, GlobalMemoryStatus, FindFirstFileW, FindNextFileW, CompareFileTime, FindClose, GetComputerNameW, GetDateFormatW, GetTimeFormatW, ExpandEnvironmentStringsW, SetFilePointer, GetSystemTimeAsFileTime, WriteFile, CreateFileW, GetFileSize, ReadFile, InterlockedIncrement, InterlockedDecrement, WaitForSingleObject, EnterCriticalSection, TerminateThread, LeaveCriticalSection, CloseHandle, DeleteCriticalSection, InitializeCriticalSection, CreateEventW, GetTickCount, SetEvent, GetTimeZoneInformation, GetCurrentThreadId, GetCurrentProcessId, LoadLibraryW, GetLastError, GetProcAddress, FreeLibrary, RtlUnwind, ResetEvent, SetEnvironmentVariableA, SetHandleCount, GetEnvironmentStringsW, GetEnvironmentStrings, FreeEnvironmentStringsW, FreeEnvironmentStringsA, UnhandledExceptionFilter, LCMapStringW, LCMapStringA, HeapSize, TerminateProcess, IsBadWritePtr, HeapCreate, HeapDestroy, GetEnvironmentVariableA, GetModuleFileNameA, TlsGetValue, GetStartupInfoA, TlsAlloc, TlsSetValue, ExitProcess, GetCommandLineA, HeapReAlloc, OpenEventW
mpr.dll
WNetGetUserW
netapi32.dll
NetMessageBufferSend
ole32.dll
CoCreateInstance, CoUninitialize, CoInitialize
user32.dll
LoadStringW, PostMessageW, DispatchMessageW, TranslateMessage, GetMessageW, SetTimer, DefWindowProcW, KillTimer, CreateWindowExW, RegisterClassW, SendMessageW, PeekMessageW, MsgWaitForMultipleObjects, wsprintfW
