bitmap.exe

Bitmap.exe is a malicious software, or malware, that was downloaded onto the ServiceDesk system. This harmful program is designed to exploit and damage computer systems by executing an obfuscated, embedded malicious payload from its Command and Control (C2) server. Malware such as bitmap.exe can infiltrate systems through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside, it can steal personal information, disrupt operations, or even hold your data hostage for ransom. On January 21, 2023, at 07:34:32, an Azure user account downloaded bitmap.exe to the ServiceDesk system. The malware was designated to connect to C2 IP 179.60.147[.]4, following the T1027.009 technique as outlined by MITRE ATT&CK framework [https://attack.mitre.org/versions/v13/techniques/T1027/009/]. This action initiated the execution of the obfuscated, embedded malicious payload from its C2 server, thus compromising the security of the ServiceDesk system. In addition to bitmap.exe, another file named wkHPd.exe was identified as a variant of Metasploit (Meterpreter). Both these files are designed to connect and receive unencrypted payloads from their respective command and control (C2) servers. These activities highlight the severity of the threat posed by these malware variants and underline the need for robust cybersecurity measures.