diff --git a/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml b/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml
index b9cb060a..64e03c74 100644
--- a/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml
+++ b/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml
@@ -6,8 +6,8 @@ environment: attack_range
 directory: dll_loaded_in_temp
 mitre_technique:
 - T1105
-dataset:
-- name: windows-sysmon
+datasets:
+- name: module_loaded_in_temp.log
   path: /datasets/attack_techniques/T1105/dll_loaded_in_temp/module_loaded_in_temp.log
-  sourcetypes: XmlWinEventLog
-  source: 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
+  sourcetype: XmlWinEventLog
+  source: XmlWinEventLog:Microsoft-Windows-Sysmon/Operational