From ba7c7409a3f69be30a80c64d108649d99da2dccc Mon Sep 17 00:00:00 2001
From: Florian Roth <florian.roth@nextron-systems.com>
Date: Fri, 26 Feb 2021 17:48:50 +0100
Subject: [PATCH] fix: typo in modified

---
 rules/windows/registry_event/sysmon_reg_silentprocessexit.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/registry_event/sysmon_reg_silentprocessexit.yml b/rules/windows/registry_event/sysmon_reg_silentprocessexit.yml
index 599ae9188..fe6b5f5a5 100644
--- a/rules/windows/registry_event/sysmon_reg_silentprocessexit.yml
+++ b/rules/windows/registry_event/sysmon_reg_silentprocessexit.yml
@@ -15,7 +15,7 @@ logsource:
 detection:
     selection:       
         TargetObject|contains: 'Microsoft\Windows NT\CurrentVersion\SilentProcessExit'
-        Details|contain: 'MonitorProcess'
+        Details|contains: 'MonitorProcess'
         EventType:
             - SetValue
             - CreateValue