MuddyWater conducted a campaign targeting entities in Turkey and the Arabian Peninsula with malicious files used to deliver a remote access Trojan called SloughRAT to victim’s computers. These attacks, though distinct, are related to the January 2022 MuddyWater campaign targeting the Turkish government, leading experts to conclude that this Iranian APT is comprised of multiple teams operating independently.