Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 16:53:25 UTC

Malware Signature Match

Medium Open
ALR-00435 · 2026-04-07T14:57:44Z

Description

Known malware signature (Emotet variant) detected in file on WS-PC-002. Email Gateway quarantined the file. User context: d.walker.

Alert Metadata

Alert ID
ALR-00435
Timestamp
2026-04-07T14:57:44Z
Severity
Medium
Status
Open
Detection Source
Email Gateway
Assigned Analyst
Anika Patel

Endpoint Information

Hostname
WS-PC-002
User Account
d.walker
Source IP
45.86.148.24
Destination IP
10.0.26.181
Origin Country
GB United Kingdom

MITRE ATT&CK Mapping

Tactic
Execution
Technique
T1204.002
Reference
attack.mitre.org/techniques/T1204.002

Investigation Timeline

14:57:44 Event ingested by SOC365 Engine
14:57:48 EmilyAI triage started — correlation enrichment
14:57:57 EmilyAI confidence: 78% — escalated to human analyst
14:58:14 Alert assigned to analyst: Anika Patel
14:59:36 Investigation started — querying SIEM and threat intelligence

Related Alerts

ID Time Alert Severity Status Host
ALR-00231 4h ago Malware Signature Match Low Investigating SW-CORE-01
ALR-00084 12h ago Brute Force SSH Medium Open WS-PC-002
ALR-00181 13h ago DLP Policy Violation Medium False Positive WS-PC-002
ALR-00311 15h ago Kerberoasting Attempt High Escalated WS-PC-002
ALR-00276 16h ago Unauthorised USB Device Informational False Positive WS-PC-002