Malware Signature Match
Informational
Investigating
ALR-00260 · 2026-07-10T20:03:13Z
Description
Known malware signature (Emotet variant) detected in file on SRV-BACKUP-01. Endpoint Agent quarantined the file. User context: k.brown.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
20:03:13
Event ingested by SOC365 Engine
20:03:14
EmilyAI triage started — correlation enrichment
20:03:26
EmilyAI confidence: 86% — escalated to human analyst
20:03:40
Alert assigned to analyst: EmilyAI (auto)
20:04:46
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00360 | 1h ago | Rogue DHCP Server | Medium | Open | SRV-BACKUP-01 |
| ALR-00415 | 4h ago | Malware Signature Match | Medium | Investigating | SRV-SQL-01 |
| ALR-00396 | 9h ago | Unusual Outbound Traffic | Informational | Escalated | SRV-BACKUP-01 |
| ALR-00180 | 9h ago | Malware Signature Match | Low | Resolved | VM-DEV-01 |
| ALR-00138 | 12h ago | Malware Signature Match | Medium | Investigating | AP-WIFI-03 |