Microsoft.Mashup.Container.exe

  • File Path: C:\Program Files (x86)\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Container.exe
  • Description: Microsoft Mashup Evaluation Container

Hashes

Type Hash
MD5 29E00548856418B23684B1F1827A0591
SHA1 7198BFE89765215845C385B34C713876DC9B185D
SHA256 FEBD3B264C2881DC4E7F49D92D4472CA1626BAD4B5A173FB2DE57114445AA2FA
SHA384 AEF9B8ED6D749BA1BF5624C9258A2F431930BB291034949429D23E5321104DEA7546F52D9D3295E9CB8A902FEDB269BC
SHA512 5F4D1AEB7152066CE39F19576C9B277FA5BF41CD3C6B84139EFC635A6BDCA3019456B6B1CA1D2DC06B197A6149436687D6ED619505F17B58B96E632921361FF6
SSDEEP 384:L1WcU27hIaz0MqY1b2G8NpW2rw1WbvcyHRN7b431uQlxbuPIV:rpIk15YEubw
IMP F34D5F2D4577ED6D9CEEC516C1F5A744
PESHA1 D6C9B53BA54CB5D28712017A038B3952E3891E49
PE256 565E0C1E1E3647B424B8768373B262E2F008183C7BEC217035D9954723A658BC

Runtime Data

Child Processes:

Fondue.exe

Loaded Modules:

Path
C:\Program Files (x86)\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Container.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 33000001529B409F5056997588000000000152
  • Thumbprint: 711AF71DC4C4952C8ED65BB4BA06826ED3922A32
  • Issuer: CN=Microsoft Code Signing PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: Microsoft.Mashup.Container.exe
  • Product Name: Microsoft Mashup Runtime
  • Company Name: Microsoft Corporation
  • File Version: 2.78.5740.481
  • Product Version: 2.78.5740.481 (20.02)
  • Language: Language Neutral
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/73
  • VirusTotal Link: https://www.virustotal.com/gui/file/febd3b264c2881dc4e7f49d92d4472ca1626bad4b5a173fb2de57114445aa2fa/detection/

File Similarity (ssdeep match)

File Score
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\dfsvc.exe 32
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe 32

MIT License. Copyright (c) 2020-2021 Strontic.