NeoPocket is an information stealer malware that specifically target ATM machines built by Diebold. Unlike common ATM malware that steal cash, it did only reconnaissance and log traffic. It steals ATM transaction data using a manin-the-middle (MitM) attack and keylogs user input from specific application windows. This stolen data was then sold in deep web markets for use in creating counterfeit payment cards and carrying out fraudulent fund transfers out of victim's accounts. Because no cash was stolen it remain undetected for a long time.
NeoPocket Malware Signatures
NeoPocket Malware Download