diff --git a/rules/windows/sysmon/sysmon_apt_muddywater_dnstunnel.yml b/rules/windows/sysmon/sysmon_apt_muddywater_dnstunnel.yml
index e13e7fcafb4..32004f6e3c0 100644
--- a/rules/windows/sysmon/sysmon_apt_muddywater_dnstunnel.yml
+++ b/rules/windows/sysmon/sysmon_apt_muddywater_dnstunnel.yml
@@ -1,4 +1,5 @@
 title: DNS Tunnel Technique from MuddyWater
+id: 36222790-0d43-4fe8-86e4-674b27809543
 description: Detecting DNS tunnel activity for Muddywater actor
 author: '@caliskanfurkan_'
 status: experimental