orbd.exe
- File Path:
C:\Program Files\Amazon Corretto\jre8\bin\orbd.exe
- Description: OpenJDK Platform binary
Hashes
Type | Hash |
---|---|
MD5 | D0E99C227083E332225BC7C56D66CC32 |
SHA1 | 0AE7BE0356A62DA086BD668453A160E684819613 |
SHA256 | 879E8EB88858A8A3DBF7326E76F2EA35C23018F98F1B9434B2B247200ADA0D31 |
SHA384 | 6BC0E975CAC9095580C5C3AB89E7951A0518BAAFF2E3064B2B5F3E9554230DD09E0ECC3546588C96E7D95589D5FC0858 |
SHA512 | B41D9C109C03E2B86F91CAC1C5149AB5E770894EFDBE067331F7726721D7CE129DE9C8C555855F7CFC44C74B0CEF8DB8A1FE0CAD565EB82BEC540F6464931D6C |
SSDEEP | 192:bvmg3lzXv9K/IKEfoQjgeEV34yK6CYlLWwsUwqvg4kt5a9sgfxIZHI7:D759KwKNQjgeEvK6jS5oGt5Dgf2hI7 |
IMP | 2C43CDA2243B5AF72E180E8D1F09446D |
PESHA1 | BCD40864D6989C196D03A97115CDC89308829E99 |
PE256 | EB1EAE75BCD68A88E32A851069711C21CA267557ACC501AC6A6A07C2FA978F01 |
Runtime Data
Child Processes:
conhost.exe
Open Handles:
Path | Type |
---|---|
(R-D) C:\Users\user\AppData\Local\Temp\hsperfdata_user\7832 | File |
(R-D) C:\Windows\System32\en-US\kernel32.dll.mui | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\ext\dns_sd.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\ext\dnsns.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\ext\jfxrt.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\jfr.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\jsse.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\resources.jar | File |
(RW-) C:\Program Files\Amazon Corretto\jre8\lib\rt.jar | File |
(RW-) C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21 | File |
(RW-) C:\xCyclopedia | File |
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 | Section |
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 | Section |
\Sessions\1\BaseNamedObjects\hsperfdata_user_7832 | Section |
\Sessions\1\BaseNamedObjects\windows_shell_global_counters | Section |
Loaded Modules:
Path |
---|
C:\Program Files\Amazon Corretto\jre8\bin\orbd.exe |
C:\Windows\System32\KERNEL32.DLL |
C:\Windows\System32\KERNELBASE.dll |
C:\Windows\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
2F83C35B5136353D68CE9EB669FD1B0B
- Thumbprint:
4BAD227329ADEF18F215B6475FB7948E1629B505
- Issuer: CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US
- Subject: CN=Amazon.com Services LLC, OU=Software Services, O=Amazon.com Services LLC, L=Seattle, S=Washington, C=US
File Metadata
- Original Filename: orbd.exe
- Product Name: OpenJDK Platform 8
- Company Name: Amazon.com Inc.
- File Version: 8.0.2650.1
- Product Version: 8.0.2650.1
- Language: Language Neutral
- Legal Copyright: Copyright 2020
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/67
- VirusTotal Link: https://www.virustotal.com/gui/file/879e8eb88858a8a3dbf7326e76f2ea35c23018f98f1b9434b2b247200ada0d31/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.