How to show the PRF in 4.8(b) is not secure?

Let F be a PRF defined over $F:\{0, 1\}^n \times \{0, 1\}^n \to Y$.

1. We say that $F$ is XOR-malleable if $F(k, x \oplus c) = F(k, x) \oplus c$ for all $k, x, c \in \{0, 1\}^n$.

2. We say that $F$ is key XOR-malleable if $F(k \oplus c, x) = F(k, x) \oplus c$ for all $k, x, c \in \{0, 1\}^n$.

Clearly an XOR-malleable PRF cannot be secure: malleability lets an attacker distinguish the PRF from a random function.Show that the same holds for a key XOR-malleable PRF.

Remark: In contrast, we note that there are secure PRFs where $F(k_1\oplus k_2, x) = F(k_1, x)\oplus F(k_2, x)$.

I don't know how to construct an attacker to determine that this is an insecure PRF. My confusion is that this topic has changed the key, but for the attacker, the key is not assignable, so I am very confused. I have discussed with others for a long time without results, so I come here for advice. Thank you very much!