Addtional Parser request for Microsoft BIT jobs

[82d28a]

Background Intelligent Transfer Service (BITS) is used for persistence.

Two sources: Microsoft-Windows-Bits-Client/(Microsoft-Windows-Bits-Client/Operational.evtx AND qmgr[??].dat

REF: https://www.secureworks.com/blog/malware-lingers-with-bits

[joachimmetz]

if the evtx is regular Windows XML event log file it should be parsed any context on qmgr[??].dat ?

[82d28a]

https://mgreen27.github.io/posts/2018/02/18/Sharing_my_BITS.html

https://github.com/ANSSI-FR/bits_parser

Based on this it looks like ESE for Win 10