diff --git a/plugins/main/public/components/common/data-source/pattern/alerts/malware-detection/malware-detection-data-source.ts b/plugins/main/public/components/common/data-source/pattern/alerts/malware-detection/malware-detection-data-source.ts
index fec9e78153..d816df13ea 100644
--- a/plugins/main/public/components/common/data-source/pattern/alerts/malware-detection/malware-detection-data-source.ts
+++ b/plugins/main/public/components/common/data-source/pattern/alerts/malware-detection/malware-detection-data-source.ts
@@ -4,7 +4,7 @@ import { AlertsDataSource } from '../alerts-data-source';
 import { FILTER_OPERATOR, PatternDataSourceFilterManager } from '../../..';
 
 const MALWARE_DETECTION_GROUP_KEY = 'rule.groups';
-const MALWARE_DETECTION_GROUP_VALUES = ['rootcheck', 'virustotal', 'yara'];
+const MALWARE_DETECTION_GROUP_VALUES = ['rootcheck', 'virustotal', 'yara', 'clamd', 'freshclam', 'virus'];
 
 export class MalwareDetectionDataSource extends AlertsDataSource {
   constructor(id: string, title: string) {