A new technique is being used in Asia to keep attacks hidden from anti-virus software and other security mechanisms after systems are infect with RATs, by making sure the malware payload stays in memory while it runs. This could lead to an increase in fileless-based attacks of this nature.
For more details about this malware and how it works, see this article in TechNewsWorld: