pushing a detections renamed

Author: patel-bhavin

detections/endpoint/windows_renamed_powershell.yml renamed to detections/endpoint/windows_renamed_powershell_execution.yml

@@ -1,4 +1,4 @@
-name: Windows Renamed Powershell
+name: Windows Renamed Powershell Execution
 id: c08014de-cc5a-42de-9775-76ecd5b37bbd
 version: 1
 date: '2025-05-07'
@@ -19,7 +19,7 @@ search: '| tstats `security_content_summariesonly` count min(_time) as firstTime
   | `drop_dm_object_name(Processes)`
   | `security_content_ctime(firstTime)` 
   | `security_content_ctime(lastTime)`
-  | `windows_renamed_powershell_filter`'
+  | `windows_renamed_powershell_execution_filter`'
 how_to_implement: The detection is based on data that originates from Endpoint Detection
   and Response (EDR) agents. These agents are designed to provide security-related
   telemetry from the endpoints where the agent is installed. To implement this search,