From 1743ce90ea3ccfa030690683089d2ef8d5b33300 Mon Sep 17 00:00:00 2001
From: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
Date: Sat, 11 Mar 2023 18:32:33 +0100
Subject: [PATCH] fix: add missing modifier

---
 .../proc_creation_win_7zip_password_extraction.yml              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/process_creation/proc_creation_win_7zip_password_extraction.yml b/rules/windows/process_creation/proc_creation_win_7zip_password_extraction.yml
index 54b5f1b10..7927b71fa 100644
--- a/rules/windows/process_creation/proc_creation_win_7zip_password_extraction.yml
+++ b/rules/windows/process_creation/proc_creation_win_7zip_password_extraction.yml
@@ -23,7 +23,7 @@ detection:
             - '7z.exe'
             - '7za.exe'
     selection_password:
-        CommandLine|contains:
+        CommandLine|contains|all:
             - ' -p'
             - ' x '
             - ' -o'