Trend Micro: Operators of Purple Fox malware have retooled their malware arsenal with a new variant of a remote access trojan. FatalRAT is a C++-based implant designed to run commands and exfiltrate sensitive information back to a remote server. Purple Fox, which comes with a rootkit module, comes with support for five different commands, including copying and deleting files from the kernel as well as evading antivirus engines by intercepting calls sent to the file system.”]
Source: https://thehackernews.com/2022/03/purple-fox-hackers-spotted-using-new.html