From 2fd43cbe82ead9bda9879a35ac2f9cbea856a951 Mon Sep 17 00:00:00 2001
From: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
Date: Wed, 15 Feb 2023 13:27:56 +0100
Subject: [PATCH] fix: typo in field

---
 .../file/file_event/file_event_win_create_non_existent_dlls.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/file/file_event/file_event_win_create_non_existent_dlls.yml b/rules/windows/file/file_event/file_event_win_create_non_existent_dlls.yml
index 76f00405a..b9bc0a90f 100644
--- a/rules/windows/file/file_event/file_event_win_create_non_existent_dlls.yml
+++ b/rules/windows/file/file_event/file_event_win_create_non_existent_dlls.yml
@@ -31,7 +31,7 @@ detection:
             - 'C:\Windows\System32\TSMSISrv.dll'
             - 'C:\Windows\System32\TSVIPSrv.dll'
             - 'C:\Windows\System32\wow64log.dll'
-        - TargetFileName|endswith: '\SprintCSP.dll'
+        - TargetFilename|endswith: '\SprintCSP.dll'
     filter:
         Image|startswith: 'C:\Windows\System32\'
     condition: selection and not filter