diff --git a/rules/windows/process_creation/process_creation_advanced_ip_scanner.yml b/rules/windows/process_creation/process_creation_advanced_ip_scanner.yml
index 7b2b85e2a..36e07720e 100644
--- a/rules/windows/process_creation/process_creation_advanced_ip_scanner.yml
+++ b/rules/windows/process_creation/process_creation_advanced_ip_scanner.yml
@@ -10,7 +10,7 @@ references:
     - https://thedfirreport.com/2021/01/18/all-that-for-a-coinminer
 author: '@ROxPinTeddy'
 date: 2020/05/12
-modified: 2021/05/11
+modified: 2021/09/12
 tags:
     - attack.discovery
     - attack.t1046
@@ -23,4 +23,4 @@ detection:
     condition: selection
 falsepositives:
     - Legitimate administrative use
-level: medium
\ No newline at end of file
+level: medium