diff --git a/rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml b/rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml
index 9efa4f61d..494e98675 100644
--- a/rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml
+++ b/rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml
@@ -22,6 +22,7 @@ detection:
         - OriginalFileName:
             - 'ProcessHacker.exe'
             - 'Process Hacker'
+            - 'SystemInformer.exe'
         - Description: 
             - 'Process Hacker'
             - 'System Informer'