diff --git a/collections/sigmahq/windows_proc_creation.yaml b/collections/sigmahq/windows_proc_creation.yaml
index ce242e11e4a..6ef38481d41 100644
--- a/collections/sigmahq/windows_proc_creation.yaml
+++ b/collections/sigmahq/windows_proc_creation.yaml
@@ -1,5 +1,5 @@
 parsers:
- - crowdsecurity/sysmon
+ - crowdsecurity/sysmon-logs
 scenarios:
  - sigmahq/proc_creation_win_addinutil_suspicious_cmdline
  - sigmahq/proc_creation_win_adplus_memory_dump