orbd.exe

  • File Path: C:\program files (x86)\Amazon Corretto\jre8\bin\orbd.exe
  • Description: OpenJDK Platform binary

Hashes

Type Hash
MD5 B8A6EDEBFC7BD2FB7A7C1C12A3DBEF24
SHA1 D929C145084A3E9406AD316EDA648D6413C29B15
SHA256 3F87E126686B912175082A921518603AEE25E0C3DB73C9000D7D3F0DA01029D4
SHA384 F93ADD44D7834A337D11E1C4A7B3E6E99484BDA3A0A3E054E7A920DF3B5E9016666C8E8C43AD03957D767DC2F9715700
SHA512 D51165FE960DE3BA9EB18E8C23B97C9E0ED4DA36533C6BE70579D4C10201906DBB2335974303F103ECA689B0223EA93A5D4B779FB52758F531FBB38493C9F46C
SSDEEP 384:Gps7BwnvBEdqCDmSHhV8ZKeeDcxK6jS2o8Dgf2h+/:Gps7yn5Ex6S/8ZXe0Kg1Uf2h+/

Runtime Data

Child Processes:

conhost.exe

Open Handles:

Path Type
(R-D) C:\Users\user\AppData\Local\Temp\hsperfdata_user\10016 File
(R-D) C:\Windows\System32\en-US\kernel32.dll.mui File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\ext\dnsns.jar File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\ext\jfxrt.jar File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\jfr.jar File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\jsse.jar File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\resources.jar File
(RW-) C:\Program Files (x86)\Amazon Corretto\jre8\lib\rt.jar File
(RW-) C:\Users\user\Documents File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2 File
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\BaseNamedObjects\hsperfdata_user_10016 Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section

Loaded Modules:

Path
C:\program files (x86)\Amazon Corretto\jre8\bin\orbd.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 2F83C35B5136353D68CE9EB669FD1B0B
  • Thumbprint: 4BAD227329ADEF18F215B6475FB7948E1629B505
  • Issuer: CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US
  • Subject: CN=Amazon.com Services LLC, OU=Software Services, O=Amazon.com Services LLC, L=Seattle, S=Washington, C=US

File Metadata

  • Original Filename: orbd.exe
  • Product Name: OpenJDK Platform 8
  • Company Name: Amazon.com Inc.
  • File Version: 8.0.2650.1
  • Product Version: 8.0.2650.1
  • Language: Language Neutral
  • Legal Copyright: Copyright 2020

File Similarity (ssdeep match)

File Score
C:\program files (x86)\Amazon Corretto\jdk1.8.0_265\bin\orbd.exe 90
C:\program files (x86)\Amazon Corretto\jdk1.8.0_265\bin\pack200.exe 58
C:\program files (x86)\Amazon Corretto\jdk1.8.0_265\jre\bin\orbd.exe 88
C:\program files (x86)\Amazon Corretto\jdk1.8.0_265\jre\bin\pack200.exe 58
C:\program files (x86)\Amazon Corretto\jre8\bin\pack200.exe 57

MIT License. Copyright (c) 2020-2021 Strontic.