Malware Signature Match
Low
Investigating
ALR-00058 · 2026-07-10T07:10:24Z
Description
Known malware signature (Emotet variant) detected in file on WS-PC-006. DecoyPulse quarantined the file. User context: p.thomas.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
07:10:24
Event ingested by SOC365 Engine
07:10:25
EmilyAI triage started — correlation enrichment
07:10:34
EmilyAI confidence: 90% — escalated to human analyst
07:10:44
Alert assigned to analyst: EmilyAI (auto)
07:11:15
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00260 | 5h ago | Malware Signature Match | Low | Open | WS-PC-004 |
| ALR-00092 | 8h ago | Kerberoasting Attempt | Medium | Escalated | WS-PC-006 |
| ALR-00007 | 14h ago | Malware Signature Match | Informational | False Positive | WS-PC-002 |
| ALR-00450 | 14h ago | Brute Force SSH | Low | Resolved | WS-PC-006 |
| ALR-00499 | 16h ago | Malware Signature Match | Low | Escalated | SRV-SQL-01 |