Malware Signature Match
Low
Escalated
ALR-00264 · 2026-05-21T20:29:57Z
Description
Known malware signature (Emotet variant) detected in file on WS-PC-001. Attack Surface Scanner quarantined the file. User context: j.smith.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
20:29:57
Event ingested by SOC365 Engine
20:29:58
EmilyAI triage started — correlation enrichment
20:30:02
EmilyAI confidence: 93% — escalated to human analyst
20:30:22
Alert assigned to analyst: EmilyAI (auto)
20:32:21
Investigation started — querying SIEM and threat intelligence
20:36:12
Containment action taken — endpoint isolated
20:47:46
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00198 | 2h ago | Phishing Email Blocked | Medium | Escalated | WS-PC-001 |
| ALR-00438 | 3h ago | Malware Signature Match | Low | Investigating | SRV-APP-01 |
| ALR-00424 | 3h ago | Malware Signature Match | Medium | Resolved | SRV-WEB-01 |
| ALR-00444 | 11h ago | Malware Signature Match | High | Investigating | WS-PC-002 |
| ALR-00272 | 17h ago | Insider Threat Indicator | Informational | Resolved | WS-PC-001 |