diff --git a/rules/windows/malware/av_printernightmare_cve_2021_1675.yml b/rules/windows/malware/av_printernightmare_cve_2021_1675.yml
index 60ad46be9..eafe874cd 100644
--- a/rules/windows/malware/av_printernightmare_cve_2021_1675.yml
+++ b/rules/windows/malware/av_printernightmare_cve_2021_1675.yml
@@ -13,14 +13,9 @@ tag:
 logsource:
     product: antivirus
 detection:
-    selection_path:
-        FileName|contains:
-            - 'C:\Windows\System32\spool\drivers\x64\'
-    selection_malware:
-        FileName|endswith:
-            - '.dll'
-            - '.exe'
-    condition: selection_path and selection_malware
+    selection:
+        FileName|contains: 'C:\Windows\System32\spool\drivers\x64\'
+    condition: selection
 fields:
     - Signature
     - FileName