diff --git a/rules/windows/malware/av_relevant_files.yml b/rules/windows/malware/av_relevant_files.yml
index 495525a81..747bd494a 100644
--- a/rules/windows/malware/av_relevant_files.yml
+++ b/rules/windows/malware/av_relevant_files.yml
@@ -32,6 +32,8 @@ detection:
             - '*.hta'
             - '*.lnk'
             - '*.scf'
+            - '*.sct'
+            - '*.vbe'
             - '*.wsf'
             - '*.wsh'
     condition: selection