diff --git a/rules/linux/lnx_system_info_discovery.yml b/rules/linux/lnx_system_info_discovery.yml
index f13c05efa..f5709a91e 100644
--- a/rules/linux/lnx_system_info_discovery.yml
+++ b/rules/linux/lnx_system_info_discovery.yml
@@ -19,14 +19,14 @@ logsource:
     categories: process_creation
 detection:
     selection:
-        ProcessName|contains:
-          - 'uname'
-          - 'hostname'
-          - 'uptime'
-          - 'lspci'
-          - 'dmidecode'
-          - 'lscpu'
-          - 'lsmod'
+        ProcessName|endswith:
+          - '/uname'
+          - '/hostname'
+          - '/uptime'
+          - '/lspci'
+          - '/dmidecode'
+          - '/lscpu'
+          - '/lsmod'
     condition: selection
 ---
 logsource: