Malware Signature Match
High
Escalated
ALR-00408 · 2026-07-08T16:26:45Z
Description
Known malware signature (Emotet variant) detected in file on SRV-BACKUP-01. Firewall quarantined the file. User context: p.thomas.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
16:26:45
Event ingested by SOC365 Engine
16:26:49
EmilyAI triage started — correlation enrichment
16:26:52
EmilyAI confidence: 83% — escalated to human analyst
16:27:28
Alert assigned to analyst: Emma Richardson
16:28:30
Investigation started — querying SIEM and threat intelligence
16:34:08
Containment action taken — endpoint isolated
16:41:43
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00311 | 12h ago | Kerberoasting Attempt | Low | Escalated | SRV-BACKUP-01 |
| ALR-00012 | 14h ago | Malware Signature Match | Informational | Investigating | WS-LAP-011 |
| ALR-00023 | 15h ago | Malware Signature Match | Low | Open | WS-PC-002 |
| ALR-00190 | 15h ago | Failed MFA Challenge | Informational | Escalated | SRV-BACKUP-01 |
| ALR-00038 | 17h ago | Unusual Outbound Traffic | Medium | Resolved | SRV-BACKUP-01 |