Yes, assuming the malware can:
A) Do pixel reading to tell when you are entering your PIC
B) Read memory from the MapleStory client to tell when you are entering your PIC
C) Decrypt packets from the MapleStory client
Your PIC can be compromised. The malware can take a screenshot of your MapleStory windows each time you click, thus revealing your PIC, or it can simply read the PIC string in the char select packet.
There was also a PIC reset exploit, involving a vulnerability that allowed you to register a new PIC, as you would if it was your first time logging into your account, even though you already had a PIC registered. I'm not sure if this is still currently working.
check out my visitor page to see literally an entire page of @mojito crying because i bullied him on gamersoul