diff --git a/rules/windows/sysmon/sysmon_malware_backconnect_ports.yml b/rules/windows/sysmon/sysmon_malware_backconnect_ports.yml
index bde56111f..d3b6f33a0 100644
--- a/rules/windows/sysmon/sysmon_malware_backconnect_ports.yml
+++ b/rules/windows/sysmon/sysmon_malware_backconnect_ports.yml
@@ -1,6 +1,6 @@
 title: Suspicious Typical Malware Back Connect Ports
 status: experimental
-description: Detects programs that connect to typical malware back connetc ports based on statistical analysis from two different sandbox system databases
+description: Detects programs that connect to typical malware back connect ports based on statistical analysis from two different sandbox system databases
 references:
     - https://docs.google.com/spreadsheets/d/17pSTDNpa0sf6pHeRhusvWG6rThciE8CsXTSlDUAZDyo
 author: Florian Roth
@@ -68,4 +68,4 @@ detection:
     condition: selection and not filter
 falsepositives:
     - unknown
-level: medium
\ No newline at end of file
+level: medium