Import table
advapi32.dll
RegSetValueExW, RegCloseKey, RegOpenKeyExW, RegDeleteValueW, RegDeleteKeyW, RegQueryValueExW, RegCreateKeyExW, LsaFreeMemory, ConvertSidToStringSidW, LsaNtStatusToWinError, LsaClose, LookupAccountNameW, LsaAddAccountRights, LsaEnumerateAccountRights, LsaOpenPolicy, GetUserNameW, ControlService, RegisterServiceCtrlHandlerW, SetServiceStatus, QueryServiceStatus, StartServiceW, ChangeServiceConfig2W, OpenServiceW, StartServiceCtrlDispatcherW, OpenSCManagerW, DeleteService, CloseServiceHandle, CreateServiceW, GetSecurityDescriptorDacl, GetSecurityDescriptorGroup, GetLengthSid, MakeSelfRelativeSD, GetSecurityDescriptorSacl, InitializeSid, GetSidLengthRequired, IsValidSid, GetSecurityDescriptorOwner, GetNamedSecurityInfoW, LookupAccountSidW, GetSecurityDescriptorLength, GetAce, EqualSid, GetSecurityDescriptorControl, CopySid, GetAclInformation, GetSidSubAuthority
kernel32.dll
GetCurrentDirectoryW, GetModuleFileNameW, ResumeThread, SetThreadPriority, GetProcAddress, OpenProcess, GetModuleHandleW, ExpandEnvironmentStringsW, WaitForMultipleObjects, CreateProcessW, DeleteFileW, GetFileSizeEx, CreateFileW, ReadFile, GetFileAttributesW, WriteFile, SetFilePointerEx, MoveFileExW, SetEndOfFile, SetLastError, GetStdHandle, SetConsoleMode, GetConsoleMode, GetCurrentProcess, LCMapStringW, FormatMessageW, WideCharToMultiByte, DeleteCriticalSection, GetLocalTime, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, Sleep, CloseHandle, FindNextFileW, CreateEventW, FindClose, GetModuleHandleA, SetEvent, WaitForSingleObject, InterlockedDecrement, InterlockedIncrement, FindFirstFileW, LocalFree, GetLastError, LockResource, MultiByteToWideChar, SizeofResource, LoadResource, FindResourceW, FindResourceExW, InitializeCriticalSectionAndSpinCount, GetLocaleInfoW, SetStdHandle, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, CompareStringA, CompareStringW, SetEnvironmentVariableA, GetDriveTypeA, CreateFileA, LoadLibraryA, RaiseException, HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, InterlockedCompareExchange, InterlockedExchange, SetConsoleCtrlHandler, GetSystemTimeAsFileTime, GetTimeZoneInformation, FileTimeToSystemTime, FileTimeToLocalFileTime, GetDriveTypeW, ExitThread, GetCurrentThreadId, CreateThread, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, RtlUnwind, GetCPInfo, LCMapStringA, GetStringTypeW, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, ExitProcess, HeapCreate, VirtualFree, VirtualAlloc, GetModuleFileNameA, GetACP, GetOEMCP, IsValidCodePage, GetTimeFormatA, GetDateFormatA, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineW, SetHandleCount, GetFileType, GetStartupInfoA, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetFullPathNameW, GetFileInformationByHandle, PeekNamedPipe, GetCurrentDirectoryA, GetConsoleCP, FlushFileBuffers, GetStringTypeA, SetFilePointer, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, GetFileSize, GetVersionExW, DuplicateHandle
netapi32.dll
NetUserGetLocalGroups, NetApiBufferFree
psapi.dll
GetModuleFileNameExW, EnumProcesses
secur32.dll
GetUserNameExW
