diff --git a/rules/windows/sysmon/sysmon_renamed_jusched.yml b/rules/windows/sysmon/sysmon_renamed_jusched.yml
index fa701f9dd..e989c3eeb 100644
--- a/rules/windows/sysmon/sysmon_renamed_jusched.yml
+++ b/rules/windows/sysmon/sysmon_renamed_jusched.yml
@@ -8,6 +8,7 @@ tags:
     - attack.execution
     - attack.masquerading
 author: Markus Neis, Swisscom
+date: 2019/06/04
 logsource:
     category: process_creation
     product: windows