There are reports that there is this malware variant that is known to exploit Windows accessibility framework called UI Automation (UIA) to steal personal information, including bank and crypto exchanges itself.
It has been aptly name "Coyote" and as of the moment, according to the researchers, this malware variants targets Brazil. And as per definition,
Microsoft UI Automation is the new accessibility framework for Microsoft Windows, available on all operating systems that support Windows Presentation Foundation (WPF).
UI Automation provides programmatic access to most user interface (UI) elements on the desktop, enabling assistive technology products such as screen readers to provide information about the UI to end users and to manipulate the UI by means other than standard input. UI Automation also allows automated test scripts to interact with the UI.
https://learn.microsoft.com/en-us/dotnet/framework/ui-automation/ui-automation-overview
https://www.akamai.com/blog/security-research/active-exploitation-coyote-malware-first-ui-automation-abuse-in-the-wildSo for our Brazilian members here, just be careful out there, it's not just banking information that this criminals are taking from us. But it also includes crypto and there could be more as this malware will surely evolved and go global.
What is alarming is that its almost as its a real application being installed , and you can't detect that you are already compromise, feature is Keylog, fake login, steals login said that can also detects when a user is logging in, screenshot, which we have no idea it is happening, hope that antivirus company will be able to stop this kind of malwares, like the others but, to make sure everyone is safe don't just install applications, or click pop-up, emails because they are where everything starts simple click can flush everything.