Malware Signature Match
Low
False Positive
ALR-00125 · 2026-07-06T21:41:48Z
Description
Known malware signature (Emotet variant) detected in file on SRV-WEB-01. Network IDS quarantined the file. User context: e.evans.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
21:41:48
Event ingested by SOC365 Engine
21:41:52
EmilyAI triage started — correlation enrichment
21:41:58
EmilyAI confidence: 78% — escalated to human analyst
21:42:28
Alert assigned to analyst: EmilyAI (auto)
21:44:42
Investigation started — querying SIEM and threat intelligence
21:48:32
Containment action taken — endpoint isolated
21:58:55
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00015 | 2h ago | Phishing Email Blocked | Low | Escalated | SRV-WEB-01 |
| ALR-00405 | 8h ago | Malware Signature Match | Critical | Escalated | WS-MAC-005 |
| ALR-00001 | 10h ago | Malware Signature Match | Low | False Positive | SRV-BACKUP-01 |
| ALR-00314 | 10h ago | Malware Signature Match | Medium | Escalated | SW-CORE-01 |
| ALR-00198 | 13h ago | Malware Signature Match | Medium | Resolved | SRV-BACKUP-01 |