diff --git a/rules/windows/process_creation/proc_creation_win_renamed_autohotkey.yml b/rules/windows/process_creation/proc_creation_win_renamed_autohotkey.yml
index c4012cfd7..7d524bf1d 100644
--- a/rules/windows/process_creation/proc_creation_win_renamed_autohotkey.yml
+++ b/rules/windows/process_creation/proc_creation_win_renamed_autohotkey.yml
@@ -1,5 +1,5 @@
 title: Renamed AutoHotkey.EXE Execution
-id: 277a4393-446c-449a-b0ed-7fdc7795244c
+id: 0f16d9cf-0616-45c8-8fad-becc11b5a41c
 status: test
 description: Detects execution of a renamed autohotkey.exe binary based on PE metadata fields
 references: