From thedfirreport.com
![](https://i1.wp.com/thedfirreport.com/wp-content/uploads/2020/06/Snach-Ransomware-Event-UTC.png?resize=1024%2C564&ssl=1)
Another RDP brute force ransomware strikes again, this time, Snatch Team! Snatch Team was able to go from brute forcing a Domain Administrator (DA) account via RDP, to running a Meterpreter reverse shell and a RDP proxy via Tor on a Domain Controller (DC), to encrypting all Domain joined systems in under 5 hours.