From edd5c2745e7532047d610d000a60827901d77dda Mon Sep 17 00:00:00 2001
From: Sittikorn S <61369934+BlackB0lt@users.noreply.github.com>
Date: Mon, 13 Sep 2021 16:05:56 +0700
Subject: [PATCH] Update win_file_winword_cve_2021_40444.yml

change TargetFilename|contains|all
---
 rules/windows/file_event/win_file_winword_cve_2021_40444.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/file_event/win_file_winword_cve_2021_40444.yml b/rules/windows/file_event/win_file_winword_cve_2021_40444.yml
index 777217355..1c20b1f83 100644
--- a/rules/windows/file_event/win_file_winword_cve_2021_40444.yml
+++ b/rules/windows/file_event/win_file_winword_cve_2021_40444.yml
@@ -17,7 +17,7 @@ detection:
         TargetFilename|contains: '\Windows\INetCache'
     selection_inf:
         Image: '\winword.exe'
-        TargetFilename|contains|all: 
+        TargetFilename|contains|all:
         - '\AppData\Local\Temp\'
         - '.inf'
     condition: selection or selection_inf