Iranian-Backed Hacking Group Targets Telecom, Defense, Government Sectors in Asia, Africa, Europe and North America. MuddyWater has been linked to the Iranian Ministry of Intelligence and Security. The group is also known as EMP.Zagros, Static Kitten, Mercury and Seedworm. The campaign appears to be using a malicious loader named PowGoop – a fake Google Update mechanism – consisting of a DLL loader and a. PowerShell-based downloader. The malicious file impersonates a legitimate file that is signed as a Google Update.”]