Update MALW_IcedID.yar

malware/MALW_IcedID.yar

@@ -26,7 +26,7 @@ rule IceID_bank_trojan {
 		$st08 = "AVCUserException@@" fullword nocase wide ascii
 
 	condition:
-		header at 0 and all of ($magic*) and 6 of ($st0*)
+		$header at 0 and all of ($magic*) and 6 of ($st0*)
 		and pe.sections[0].name contains ".text"
 		and pe.sections[1].name contains ".rdata"
 		and pe.sections[2].name contains ".data"