diff --git a/rules/windows/process_creation/win_susp_wmic_proc_create_rundll32.yml b/rules/windows/process_creation/win_susp_wmic_proc_create_rundll32.yml
index 72ee04d1a89..9ed00e6b9c7 100644
--- a/rules/windows/process_creation/win_susp_wmic_proc_create_rundll32.yml
+++ b/rules/windows/process_creation/win_susp_wmic_proc_create_rundll32.yml
@@ -1,4 +1,4 @@
-title: Suspicious WMI Execution using Rundll32
+title: Suspicious WMI Execution Using Rundll32
 id: 3c89a1e8-0fba-449e-8f1b-8409d6267ec8
 status: experimental
 description: Detects WMI executing rundll32