Poorly secured remote access primarily attracts ransomware groups, but can also allow access to cryptocurrency miners and backdoors.
Learn more at: https://www.welivesecurity.com/la-es/2020/06/29/growth-attacks-bruta-directed-force-rdp-during-pandemic/
It not absolutely approaches me. Perhaps there are still variants?