MicrosoftDocs · v-dirichards · Aug 12, 2025 · Aug 12, 2025
diff --git a/articles/sentinel/normalization-schema-process-event.md b/articles/sentinel/normalization-schema-process-event.md
@@ -176,7 +176,7 @@ The process event schema references the following entities, which are central to
 | **ActingProcessMD5**               | Optional     | String     |The MD5 hash of the acting process image file.  <br><br>Example:  `75a599802f1fa166cdadb360960b1dd0`|
 | **ActingProcessSHA1**              | Optional     | SHA1       | The SHA-1 hash of the acting process image file.             <br><br>  Example: `d55c5a4df19b46db8c54c801c4665d3338acdab0`  |
 | **ActingProcessSHA256**            | Optional     | SHA256     | The SHA-256 hash of the acting process image file.    <br><br> Example: <br> `e81bb824c4a09a811af17deae22f22dd`<br>`2e1ec8cbb00b22629d2899f7c68da274`   |
-| **ActingProcessSHA512**            | Optional     | SHA521     |       The SHA-512 hash of the acting process image file.       |
+| **ActingProcessSHA512**            | Optional     | SHA512     |       The SHA-512 hash of the acting process image file.       |
 | **ActingProcessIMPHASH**           | Optional     | String     |       The Import Hash of all the library DLLs that are used by the acting process.    |
 | **ActingProcessCreationTime**      | Optional     | DateTime   |       The date and time when the acting process was started. |
 | **ActingProcessTokenElevation**    | Optional     | String     | A token indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the acting process.   <br><br>Example:  `None`|