This type of malware can harvest your confidential data when you’re filling a web form, before the data is sent over the Internet, to a secure server. By doing this, the malware can avoid the security ensured by an HTTPS connection. Unfortunately, using a virtual keyboard, autofill, or copy/paste won’t protect you from this threat.
What’s more, the malware can categorize data according to type (username, password, etc.) and even grab de URL where you were inputting your information.