Malware Signature Match
Medium
Investigating
ALR-00106 · 2026-07-09T18:45:46Z
Description
Known malware signature (Emotet variant) detected in file on SRV-SQL-01. Firewall quarantined the file. User context: p.thomas.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
18:45:46
Event ingested by SOC365 Engine
18:45:48
EmilyAI triage started — correlation enrichment
18:46:00
EmilyAI confidence: 87% — escalated to human analyst
18:46:15
Alert assigned to analyst: Anika Patel
18:47:22
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00227 | 3h ago | Credential Stuffing Attempt | Informational | Open | SRV-SQL-01 |
| ALR-00454 | 9h ago | Malware Signature Match | High | Open | SRV-SQL-01 |
| ALR-00463 | 10h ago | C2 Beacon Activity | High | Open | SRV-SQL-01 |
| ALR-00269 | 11h ago | DLP Policy Violation | Informational | False Positive | SRV-SQL-01 |
| ALR-00024 | 17h ago | Kerberoasting Attempt | Low | Investigating | SRV-SQL-01 |