Malware Signature Match
Low
Escalated
ALR-00189 · 2026-07-05T17:32:40Z
Description
Known malware signature (Emotet variant) detected in file on WS-PC-006. Cloud Connector quarantined the file. User context: l.johnson.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
17:32:40
Event ingested by SOC365 Engine
17:32:41
EmilyAI triage started — correlation enrichment
17:32:45
EmilyAI confidence: 80% — escalated to human analyst
17:33:03
Alert assigned to analyst: EmilyAI (auto)
17:35:22
Investigation started — querying SIEM and threat intelligence
17:35:46
Containment action taken — endpoint isolated
17:49:47
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00261 | 6m ago | Suspicious PowerShell Execution | Medium | Resolved | WS-PC-006 |
| ALR-00188 | 8h ago | Malware Signature Match | Low | Escalated | WS-PC-004 |
| ALR-00062 | 13h ago | Suspicious Scheduled Task | Medium | False Positive | WS-PC-006 |
| ALR-00415 | 15h ago | DLP Policy Violation | Low | Resolved | WS-PC-006 |
| ALR-00190 | 1d ago | Anomalous DNS Query | Low | False Positive | WS-PC-006 |