orbd.exe
- File Path:
C:\Program Files\Amazon Corretto\jdk1.8.0_265\bin\orbd.exe
- Description: OpenJDK Platform binary
Hashes
Type | Hash |
---|---|
MD5 | 88A71D46CF9DAD0A1A922B7A81FF3F94 |
SHA1 | 717CDD1A06FED3F8B211B4173688A27C690F4E1E |
SHA256 | A1FDC9F6C9CDB000E8387EAB1365030D1B6AD4421E57159B545D556C289F5A59 |
SHA384 | F001C0A08FF093B97303DCC1A186F79F9ECC45D6C2B54A9A24D48A37B2E33CC843E34E913C0E82E12D888F2ACC05C491 |
SHA512 | B14B37B830D81ADF8F74E346A384CAC066678CA92492386361E65B1CA778D0B6A04326D4B8465A70B2B222B19EE8BBC90262836BF4F00785436C21BF6E9F97A1 |
SSDEEP | 192:6vmg3lzXv9K/IKEfoQjgeEV34yK6CYlLWwsUiqMC4tMa9sgfxIZHcK8:I759KwKNQjgeEvK6jS/zMDgf2hcb |
IMP | 2C43CDA2243B5AF72E180E8D1F09446D |
PESHA1 | BCD40864D6989C196D03A97115CDC89308829E99 |
PE256 | EB1EAE75BCD68A88E32A851069711C21CA267557ACC501AC6A6A07C2FA978F01 |
Runtime Data
Child Processes:
conhost.exe
Open Handles:
Path | Type |
---|---|
(R-D) C:\Users\user\AppData\Local\Temp\hsperfdata_user\980 | File |
(R-D) C:\Windows\System32\en-US\kernel32.dll.mui | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\ext\dnsns.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\ext\jfxrt.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\jfr.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\jsse.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\resources.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\jre\lib\rt.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jdk1.8.0_265\lib\tools.jar | File |
(RW-) C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21 | File |
(RW-) C:\xCyclopedia | File |
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 | Section |
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 | Section |
\Sessions\1\BaseNamedObjects\hsperfdata_user_980 | Section |
\Sessions\1\BaseNamedObjects\windows_shell_global_counters | Section |
Loaded Modules:
Path |
---|
C:\Program Files\Amazon Corretto\jdk1.8.0_265\bin\orbd.exe |
C:\Windows\System32\KERNEL32.DLL |
C:\Windows\System32\KERNELBASE.dll |
C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
2F83C35B5136353D68CE9EB669FD1B0B
- Thumbprint:
4BAD227329ADEF18F215B6475FB7948E1629B505
- Issuer: CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US
- Subject: CN=Amazon.com Services LLC, OU=Software Services, O=Amazon.com Services LLC, L=Seattle, S=Washington, C=US
File Metadata
- Original Filename: orbd.exe
- Product Name: OpenJDK Platform 8
- Company Name: Amazon.com Inc.
- File Version: 8.0.2650.1
- Product Version: 8.0.2650.1
- Language: Language Neutral
- Legal Copyright: Copyright 2020
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/a1fdc9f6c9cdb000e8387eab1365030d1b6ad4421e57159b545d556c289f5a59/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.