diff --git a/rules/windows/powershell/powershell_shellcode_b64.yml b/rules/windows/powershell/powershell_shellcode_b64.yml
index fabff88ac..15c7fc9ec 100644
--- a/rules/windows/powershell/powershell_shellcode_b64.yml
+++ b/rules/windows/powershell/powershell_shellcode_b64.yml
@@ -15,7 +15,7 @@ date: 2018/11/17
 logsource:
     product: windows
     service: powershell
-    description: 'Script block logging must be enabled'
+    definition: 'Script block logging must be enabled'
 detection:
     selection:
         EventID: 4104