Malware Signature Match
Low
Resolved
ALR-00277 · 2026-05-25T12:22:05Z
Description
Known malware signature (Emotet variant) detected in file on SW-CORE-01. EmilyAI Triage quarantined the file. User context: k.brown.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
12:22:05
Event ingested by SOC365 Engine
12:22:08
EmilyAI triage started — correlation enrichment
12:22:16
EmilyAI confidence: 92% — escalated to human analyst
12:22:22
Alert assigned to analyst: EmilyAI (auto)
12:24:15
Investigation started — querying SIEM and threat intelligence
12:26:28
Containment action taken — endpoint isolated
12:36:29
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00338 | 9h ago | Lateral Movement Detected | Medium | Escalated | SW-CORE-01 |
| ALR-00431 | 18h ago | Tor Exit Node Connection | Low | Escalated | SW-CORE-01 |
| ALR-00348 | 1d ago | Malware Signature Match | Informational | Investigating | AP-WIFI-03 |
| ALR-00084 | 1d ago | Data Exfiltration Attempt | Low | Investigating | SW-CORE-01 |
| ALR-00498 | 1d ago | Pass-the-Hash Detected | Medium | Open | SW-CORE-01 |