From a5df41cf3936b53ea2fc43b002725fa13cd50b44 Mon Sep 17 00:00:00 2001
From: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
Date: Thu, 12 Jan 2023 15:49:40 +0100
Subject: [PATCH] fix: update title and description

---
 .../appxdeployment_server_mal_appx_names.yml                  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/rules/windows/builtin/appxdeployment_server/appxdeployment_server_mal_appx_names.yml b/rules/windows/builtin/appxdeployment_server/appxdeployment_server_mal_appx_names.yml
index 6b3221c82..519c9f7b7 100644
--- a/rules/windows/builtin/appxdeployment_server/appxdeployment_server_mal_appx_names.yml
+++ b/rules/windows/builtin/appxdeployment_server/appxdeployment_server_mal_appx_names.yml
@@ -1,7 +1,7 @@
-title: Malicious AppX Package Installed
+title: Potential Malicious AppX Package Installation Attempts
 id: 09d3b48b-be17-47f5-bf4e-94e7e75d09ce
 status: experimental
-description: Detects installation of known malicious appx packages
+description: Detects potential installation or installation attempts of known malicious appx packages
 references:
     - https://www.sentinelone.com/labs/inside-malicious-windows-apps-for-malware-deployment/
     - https://news.sophos.com/en-us/2021/11/11/bazarloader-call-me-back-attack-abuses-windows-10-apps-mechanism/