Chinese state hacking groups have stolen and started using NSA exploit almost 3 years before hacking group Shadow Brokers leaked it to the public.
EpMe is an original exploit created by Equation Group in 2013 for Windows zero-day bug. It was abused to escalate privileges and to get access to targeted devices. The bug was patched in March 2017.
Microsoft attributed the mass exploitation of the bug to Chinese hacking group APT31, however their exploit was built by replicating the functionality of the EpMe according to security researchers.