Cybersecurity startup Secdo has discovered two separate hacking campaigns using the same Eternalblue SMB exploit at least three weeks before the outbreak of WannaCry global ransomware attacks. The two newly discovered hacking campaigns, one traced back to Russia and another to China, are much more advanced than Wanna Cry, as sophisticated hackers are leveraging Eternalblue to install backdoors, Botnet malware and exfiltrate user credentials. Both campaigns are using a similar attack flow, wherein attackers initially infect the target machine with malware via different attack vectors.
Source: https://thehackernews.com/2017/05/eternalblue-smb-exploit.html