Malware Signature Match
Informational
False Positive
ALR-00488 · 2026-07-10T08:51:56Z
Description
Known malware signature (Emotet variant) detected in file on WS-MAC-005. SOC365 Engine quarantined the file. User context: e.evans.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
08:51:56
Event ingested by SOC365 Engine
08:52:00
EmilyAI triage started — correlation enrichment
08:52:11
EmilyAI confidence: 94% — escalated to human analyst
08:52:33
Alert assigned to analyst: EmilyAI (auto)
08:53:22
Investigation started — querying SIEM and threat intelligence
08:55:47
Containment action taken — endpoint isolated
09:06:07
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00076 | 12h ago | Shadow IT Discovery | Medium | Open | WS-MAC-005 |
| ALR-00388 | 12h ago | Malware Signature Match | Medium | Investigating | WS-PC-002 |
| ALR-00385 | 13h ago | Lateral Movement Detected | Informational | Investigating | WS-MAC-005 |
| ALR-00457 | 15h ago | Malware Signature Match | Medium | Open | WS-LAP-012 |
| ALR-00489 | 18h ago | Malware Signature Match | Low | Open | WS-LAP-010 |